Server-side keys
LLM provider credentials are loaded from environment variables and never exposed to browsers.
Trust
Security and privacy.
The finance domain demands restraint with confidential data. DealDesk keeps provider keys server-side and treats uploaded documents as ephemeral — parsed for context, then dropped.
Ephemeral documents
Raw uploaded finance documents are parsed in memory and are not written to disk or database in v1.
Metadata-only logs
Structured logging redacts secrets, prompts, response bodies, and future document content.
AI analysis disclaimer
Generated finance outputs are marked as AI-assisted analysis and require source verification.