SECURITY
Your data, protected at every layer
LekhaBooks stores financial data for 10,000+ Indian businesses. Here's exactly how we protect it.
Report a vulnerabilityEncryption at rest & in transit
All data is encrypted at rest using AES-256. Data in transit is protected with TLS 1.3. Encryption keys are rotated regularly and stored separately from your data.
Role-based access control
Define exactly who can view or modify your financial data with granular, role-based permissions. Every action is logged with a full audit trail โ date, time, user, and change.
Automated daily backups
Your data is backed up automatically every 24 hours with 30-day retention. Backups are encrypted and stored separately so a single failure can never cause data loss.
Data stored in India โ DPDP compliant
All your data is stored on servers in India, in compliance with the Digital Personal Data Protection Act 2023. We don't transfer your financial data outside India.
PCI-compliant payment processing
All payments are processed by Razorpay, a PCI DSS Level 1 certified gateway. LekhaBooks never stores your card number, CVV, or banking credentials.
Vulnerability disclosure
Found a security issue? Email security@lekhabooks.in. We respond within 48 hours and follow responsible disclosure practices โ we don't take legal action against good-faith researchers.
Questions about our security practices?
Our team is happy to answer detailed security questions for enterprise customers, due diligence reviews, or vendor assessments.