If you've ever paused before clicking "Connect" on a new financial tool, you're not being paranoid. You're being smart. Your accounting data is some of the most sensitive information your business has, and it's reasonable to ask: who gets access to it, and how much?
Quick takeaway: When you connect Xero or QuickBooks to mybalancingIQ, you log in on Xero or QuickBooks' own site, not ours. We receive a limited, revocable token, never your username or password.
The Assumption Most People Make
A lot of business owners assume that "connecting" an app to their accounting software means typing their Xero or QuickBooks username and password into that app's sign-in form, handing over the same credentials they'd use to log in themselves.
That would be a real risk. If a third party stored your accounting login directly, a breach on their end could expose your books, your bank feeds, everything. So it's a fair thing to worry about.
The good news: that's not how it works, and it's not how mybalancingIQ works either.
How the Connection Actually Happens
When you click "Connect" to link Xero or QuickBooks, you're redirected to a login page hosted by Xero or QuickBooks themselves, not mybalancingIQ. The address bar shows their domain. You log in with your existing credentials, including any two-factor authentication you already have set up.
From there, Xero or QuickBooks shows you exactly what mybalancingIQ is asking permission to do (for example, read your profit & loss and balance sheet data), and you approve or deny it. Once you approve, Xero or QuickBooks sends a one-time, single-use code back to mybalancingIQ. That code is exchanged, behind the scenes, for an access token.
At no point in this process does your password pass through mybalancingIQ's servers. We literally never see it.
What We Receive (and What We Don't)
- We don't receive: your Xero or QuickBooks username, password, or any way to log in as you.
- We do receive: a token. Think of it like a hotel key card. It opens specific doors (the data you approved), for a limited time, and can be deactivated at any moment.
What Happens to That Token
The token isn't left lying around in plain text. Before it's stored, it's encrypted using a dedicated encryption key managed through AWS Key Management Service (KMS), the same approach banks and enterprise software rely on. Even in the unlikely event someone gained access to our underlying database, they would not find a usable credential sitting there.
The token is also scoped: it grants read access to the financial data needed to power your dashboards and Invara's insights, not the ability to make changes in your accounting software.
You're Always in Control
Because the connection is built on tokens rather than shared passwords, you can revoke access at any time, directly from your Xero or QuickBooks account settings, without needing to contact us. Disconnect it there, and the access ends immediately.
The Takeaway
Trust shouldn't be a leap of faith. The reason mybalancingIQ never sees your bookkeeping password isn't a policy we follow. It's how the connection is built from the ground up.
So when you connect your books, you're not handing over the keys to your business. You're handing over a key card, to one specific door, that you can take back whenever you want.
Curious how it works for your business?
Connect your books in minutes and see your numbers in one place, without ever sharing your accounting login with us.