Features Portals Security Integrations Pricing About Sign In Request a Demo
Our Story

Built by Practitioners,
for Practitioners

eTrustPortal was born out of a simple frustration — professional services firms deserved a secure, elegant document portal that was actually built with their workflows in mind.

Our Mission

Protecting What Your
Clients Trust You With

Accounting firms, law practices, and financial advisors handle some of the most sensitive documents in their clients' lives — tax returns, legal agreements, financial statements, and estate plans. These files deserve more than a shared Dropbox folder.

Our mission is to give every professional services firm — from a solo practitioner to a 500-person accounting network — a secure, white-label client portal that looks like they built it themselves and operates with bank-grade security underneath.

We believe that security should not be a premium add-on. Every plan, at every tier, ships with AES-256 encryption, multi-factor authentication, and a complete audit trail — because your clients' trust is not negotiable.

AES-256
Encryption on every document stored
100%
Audit-logged platform actions
3
E-signature providers supported
11+
Native integrations out of the box
6
Notification delivery providers
Zero
Plaintext data ever written to disk

How eTrustPortal Came to Be

The idea for eTrustPortal started with a conversation between a software developer and an accountant. The accountant was emailing password-protected PDFs back and forth with clients, managing document requests in a spreadsheet, and chasing signatures through a mix of DocuSign and printed forms. The process was fragmented, insecure, and embarrassing to present to new clients.

There had to be a better way. Not just a file-sharing tool, but a complete client-facing portal — one that handled secure document storage, e-signatures, requests, messages, and tasks in a single, beautifully branded experience.

"We wanted something that looked like a $500/month enterprise product but was accessible to a solo bookkeeper or a five-person law firm — and secure enough that we'd trust it with our own financial documents."

We spent months studying how accounting firms, law practices, financial advisors, and bookkeepers actually work with their clients. We mapped every workflow — from onboarding a new client and collecting their initial documents, to requesting tax documents each season, routing engagement letters for signature, and archiving completed files.

The result is eTrustPortal: a platform where every feature exists because a real firm asked for it, and every security decision was made assuming the worst-case scenario — what if someone tried to steal this data?

Today, eTrustPortal is trusted by accounting firms, law offices, financial planning practices, and bookkeeping businesses across the country. Our white-label architecture means your clients see your brand, your colors, and your domain — not ours. We stay invisible so you can look exceptional.

What We Stand For

Our Core Values

Everything we build, every decision we make, flows from these principles.

🔒
Security Without Compromise
Security is not a feature we bolt on — it is the foundation. AES-256 encryption, envelope key management, bcrypt password hashing, and network-isolated databases are standard on every plan, not just enterprise tiers.
🎨
Your Brand, Not Ours
We believe your clients should see your firm's identity, not a vendor's. Every aspect of the portal — logos, colors, themes, email notifications, and domain — can be completely white-labeled to your brand.
Built for Real Workflows
Features are not built for demos — they are built for the actual daily workflows of accountants, lawyers, and financial advisors. Every screen, every button, and every automation came from listening to practitioners in the field.
🤝
Transparent and Trustworthy
We are honest about what our platform does and does not do. Our audit logs are tamper-evident. Our pricing has no hidden fees. And when something goes wrong, we tell you — we do not hide it.
📈
Always Improving
The platform is never finished. We ship improvements continuously based on customer feedback, emerging security standards, and new integrations that our users actually need — not vanity features that look good in a press release.
💬
Customers Come First
Every support request is handled by someone who knows the product deeply. We do not outsource support or hide behind a chatbot. When you need help, you get a real answer from a real person who cares about your success.
Security Commitment

How We Protect Your
Clients' Data

A deeper look at the technical decisions we made to ensure that a data breach — even if it somehow occurred — would yield nothing useful to an attacker.

🗄️
Application-Layer Encryption — Stronger Than Volume Encryption
Sensitive fields are encrypted by the application before they ever reach the database. This is fundamentally stronger than volume-level disk encryption. Volume encryption only protects against physical disk theft — the moment the server boots, the disk is automatically unlocked, so any attacker who gains OS-level access, database access, or a backup file sees plaintext. With application-layer encryption, the database server itself never holds readable data. A compromised database process, a rogue DBA, or a leaked database backup all yield nothing but ciphertext — unreadable without the application encryption keys, which are stored and managed separately.
🔐
Envelope Encryption — A Stolen Database Is Worthless
Each document is encrypted with its own unique data key. That data key is then encrypted with a separate master key that is stored outside the database entirely. Even if an attacker stole a complete database dump, they would have thousands of encrypted keys with no master key to unlock them — the data is permanently unreadable without both components.
🚫
Zero Plaintext Sensitive Data
We never write sensitive information to disk in an unencrypted form. Document contents, file metadata, and client records are encrypted before being persisted. A raw database export contains no readable client data — only encrypted fields and hashed credentials that cannot be reversed.
🛡️
Database Hidden Behind a Private Network
The database server has no public IP address and is not accessible from the internet. It lives on a private internal network that only the application server can reach. An external attacker has no network path to the database — there is no port to probe, no address to connect to, and no attack surface to exploit.
🔑
Bcrypt-Hashed Passwords — Cracking Is Impractical
Passwords are hashed using bcrypt with an adaptive cost factor. Even if an attacker obtained the entire user table, brute-forcing bcrypt hashes at modern GPU speeds would take decades per password. We also enforce minimum password complexity and lock accounts after repeated failed attempts.
🌐
TLS 1.3 — Data Protected in Transit
All communication between clients' browsers and our servers is encrypted with TLS 1.3 — the latest and most secure transport protocol. There is no fallback to older, weaker protocols. Man-in-the-middle attacks and network eavesdropping yield only encrypted gibberish.
🏢
Complete Tenant Isolation
Each organization's data is isolated at both the database query level and the file storage level. Strict tenant-scoped queries ensure that no API call, no matter how it is crafted, can return data belonging to a different organization. Cross-tenant data access is architecturally impossible.
📜
Tamper-Evident Audit Logging
Every action on the platform — every login, document upload, download, share, deletion, and settings change — is logged with a timestamp, user identity, IP address, and action details. Logs cannot be edited or deleted by any user, including administrators. A complete, unalterable record exists for every interaction with client data.
Who We Serve

Built for Professional Services

eTrustPortal is purpose-built for firms that handle sensitive client documents as a core part of their practice.

📊
Accounting Firms
Collect tax documents, share financial statements, route engagement letters for signature, and keep every client file organized and encrypted — all under your firm's brand.
⚖️
Law Firms
Securely exchange legal agreements, court documents, and contracts with clients. Track document requests, manage e-signatures, and maintain a complete audit trail for every matter.
💼
Financial Advisors
Share investment reports, collect KYC documents, and communicate with clients through encrypted messaging — meeting your compliance obligations without the complexity.
📚
Bookkeepers
Give every bookkeeping client a professional, branded portal where they can upload receipts, review reports, and sign off on work — replacing email attachments and shared drives for good.
🏦
Tax Professionals
Streamline your annual document collection season with AI-powered auto-classification, bulk upload, document request workflows, and automated reminders — so you spend less time chasing clients.
🏢
Enterprise & Networks
Running a multi-firm network, franchise, or white-label reseller operation? The Enterprise plan supports unlimited organizations, each with their own isolated data, branding, users, and custom themes.
Get in Touch

Ready to See
eTrustPortal in Action?

Talk to our team and we'll show you exactly how eTrustPortal fits your firm's workflow — and how quickly you can have clients uploading documents securely.

Request a Demo → Contact Support