Tabscanner’s Receipt OCR (Optical Character Recognition) API is designed to securely process and extract data from receipt images, ensuring that sensitive information is protected throughout the process. The platform implements robust security measures, including encryption protocols, stringent data storage policies, and adherence to international data protection regulations such as the General Data Protection Regulation (GDPR).
Encryption Standards
To safeguard data during transmission and storage, Tabscanner employs industry-standard encryption techniques:
- Data in Transit: All data transmitted between clients and Tabscanner’s servers is encrypted using HTTPS, ensuring that sensitive information remains secure during transfer.
Data at Rest: While specific details about data encryption at rest are not publicly disclosed, Tabscanner’s compliance with SOC 3 standards indicates adherence to stringent security protocols, which includes 256-bit Advanced Encryption Standard (AES-256)
Data Storage Policies
Tabscanner maintains clear policies regarding data storage to protect user information:
- Temporary Data Storage: The platform processes receipt images and extracts relevant data, but it does not retain this data beyond the necessary processing period and no more than 90 days in line with our data retention policy. This approach minimizes the risk of unauthorized access to sensitive information.
Access Controls: Tabscanner implements strict access controls to ensure that only authorized personnel can access the system, further enhancing data security.
Compliance with Regulations
Adherence to international data protection regulations is a cornerstone of Tabscanner’s commitment to data security:
GDPR Compliance: Tabscanner complies with GDPR requirements through our AWS-only infrastructure, ensuring that personal data is processed lawfully, transparently, and for legitimate purposes. Users have rights regarding their data, including access, rectification, and deletion.
SOC 3 Compliance: AWS’s SOC 3 compliance reflects its dedication to maintaining robust controls over data security, availability, processing integrity, confidentiality, and privacy. No data leaves the environment at any stage during processing and storage.
Additional Security Measures
Beyond encryption and compliance, Tabscanner incorporates other security practices:
- Regular Security Audits: Conducting regular security audits helps identify and address potential vulnerabilities, ensuring that the platform remains secure against emerging threats.
- User Authentication: Implementing user authentication mechanisms ensures that only authorized users can access the API, preventing unauthorized data access.
- ISO Compliance: Tabscanner is dedicated to high quality management and information security and is compliant with ISO 27001, 9001, AND 14001 certifications.
Conclusion
Tabscanner’s Receipt OCR API demonstrates a strong commitment to data security through the implementation of advanced encryption methods, strict data storage policies, and compliance with international regulations like GDPR and SOC 3. These measures collectively ensure that the data processed by Tabscanner remains secure, aligning with industry best practices for data protection.