Security
Last updated: January 30, 2026
BulkPayer is designed with security and least-privilege access in mind.
Authentication & access control
- Secure login and session management
- Role-based access (if applicable)
- Principle of least privilege for connected integrations
QuickBooks connection
- Uses Intuit OAuth for authorization
- Requests only the scopes needed for the enabled features
- Access can be revoked at any time
Encryption
- Encryption in transit (TLS)
- Encryption at rest for stored data (where applicable)
Operational safeguards
- Audit logging for bulk payment runs
- Idempotency keys to prevent duplicate posting on retries
- Monitoring and alerting for abnormal activity
Incident response
If we become aware of a security incident affecting customer data, we will investigate and provide notifications consistent with applicable law and contractual obligations.
Reporting security issues
If you discover a security vulnerability, please report it to us responsibly.
Email: admin@bulkpayer.com
QuickBooks App Compliance
Intuit relationship disclosure: BulkPayer is a third-party application and is not affiliated with or endorsed by Intuit.
Data use: BulkPayer accesses QuickBooks data only to provide the features you enable (invoice retrieval, payment recording, syncing, and audit history). We do not sell QuickBooks data or use it for advertising.
Security questions?
Contact us at admin@bulkpayer.com