NCGVAULT — Najax Consulting Group

Clients

All records encrypted with AES-256-GCM.

New client record 🔒 Encrypted on save

TAXPAYER PERSONAL INFORMATION

Title

First name *

Last name *

Last name changed in 2025?

Yes No

SIN

Care of

Email

Street address

P.O. Box / R.R.

City

Province

Postal code

Country (if not Canada)

Primary phone

Birth date

Age

Date of death (if applicable)

Province/territory of residence if different from mailing address

MARITAL STATUS (as of December 31, 2025)

Married Common-law Widowed Divorced Separated Single

If status changed in 2025, date of change

Married or common-law at any time this tax year?

Yes No

TAX INFORMATION

Tax year

E-File status

Balance owing ($)

Client status

Payment status

Invoice #

Invoice date

DEPENDANTS

Dependant #1

First name

Last name

Relationship

Birth date

Date of death (if applicable)

CLIENT RECORDS

Name	SIN	Status	E-File	Balance	Payment	Year	File #
No clients yet. Add your first client above.

Invoices

Invoices generated from client records.

INVOICE RECORDS

Client	Invoice #	Date	Balance	Status	Actions
No invoices yet.

E-File tracker

Track CRA e-filing status for all clients.

E-FILE STATUS

Client	File #	Year	Status	Balance	Actions
No clients yet.

Notes

Private encrypted notes for your practice.

No notes yet.

Reports

Summary analytics for your practice.

CLIENT SUMMARY

Name	Year	E-File	Balance	Invoice #

Deadlines

CRA filing deadlines and upcoming dates.

Follow-ups

Clients requiring attention.

Activity log

All vault actions recorded for this session.

Document drop-off

Log documents received from a client. They receive an email confirmation automatically.

LOG NEW DROP-OFF

Client name *

File number

Client email (for confirmation)

EMPLOYMENT INCOME SLIPS

SELF-EMPLOYED INCOME

Notes (optional)

Attach scanned document

RECEIVED DOCUMENTS LOG

No drop-offs logged yet.

Search clients

Search across all encrypted records.

Start typing to search your encrypted records.

Import CSV

Export from your tax software and drop the file here.

EXPECTED COLUMNS

ClientFirstName, ClientLastName, ClientSIN, EFILE, Invoice_Number, Invoice_Date, BalanceOwing

Click to upload CSV file

All records encrypted immediately on import

Settings

Manage your vault preferences.

VAULT INFO

VAULT NAME

—

TOTAL RECORDS

0

ENCRYPTION

AES-256-GCM

KEY DERIVATION

PBKDF2-SHA256 (310,000 rounds)

STORAGE MODE

Browser only

ACCESS

Single vault — restricted

CHANGE PASSWORD

Current password

New password

Confirm new password

RECOVERY CONTACTS

Up to 3 email addresses or phone numbers. Shown on the "Forgot password" screen as a reminder of who to contact.

Contact 1

Contact 2

Contact 3

DANGER ZONE

Permanently delete your vault. Requires 3-step authorization. Cannot be undone.

⚠ All client records, invoices, notes and documents will be permanently destroyed.

Security

How your data is protected.

ENCRYPTION

AES-256-GCM

KEY DERIVATION

PBKDF2-SHA256

ITERATIONS

310,000

IV / NONCE

96-bit random

SALT

128-bit random

AUTH TAG

128-bit GCM

PROTECTION DETAILS

✓ Password never stored — used only to derive the key via PBKDF2.

✓ AES-256-GCM — provides both confidentiality and tamper detection.

✓ Unique IV per record — identical data produces different ciphertext every time.

✓ SIN masked by default — click to reveal temporarily.

△ No password recovery — forgotten master password = data unrecoverable by design.