Home › Blog › Is it safe to use AI on client tax documents?

Is It Safe to Use AI on Client Tax Documents?

Q: Is it a problem to paste a SIN into ChatGPT?

Yes, it is a real concern. Pasting a client's Social Insurance Number or full tax slip into a public chatbot sends that personal information to a third party you do not control, may breach your professional confidentiality obligations, and you generally have not obtained the client's informed consent for that disclosure under PIPEDA.

Q: What does local-first AI actually mean?

Local-first (on-device) means the AI model runs on your own computer and the documents are read, classified and processed there. No file or its contents are uploaded to an external server. PDF Insight runs this way: it classifies and orders tax slips on your Mac or PC with on-device OCR.

Last updated June 2026 · ~6 min read · For accountants & bookkeepers

Short answer: It depends entirely on where the AI runs. AI that processes documents on your own computer (local-first / on-device) keeps SINs, T4s and RL-1s on the machine and is the lower-risk option for client tax files. AI that runs in the cloud — including public chatbots — transmits those documents to a third party, which raises confidentiality and consent questions under PIPEDA. Pasting a client's SIN into ChatGPT is genuinely a problem; running a local tool like PDF Insight on your own Mac or PC is not.

Not legal advice. This is a general explainer for Canadian accountants and bookkeepers. Your professional body (CPA), PIPEDA, and Quebec's Law 25 set the actual rules — confirm your obligations with qualified counsel before changing your process.

The real question isn't "AI vs no AI" — it's "where does the AI run?"

"AI" is not one thing. The safety of using it on a client's tax bundle hinges on a single technical fact: does the document leave your computer or not? That splits every AI tool into two camps.

	On-device / local-first	Cloud AI & chatbots
Where the file is read	On your own machine	On a third party's servers
Does the SIN leave your control?	No	Yes — it is transmitted out
Internet required	No (works offline)	Yes
Third-party disclosure under PIPEDA	None for the processing itself	Yes — you're disclosing client data
Examples	PDF Insight, on-device OCR	ChatGPT, many SaaS "AI" features

Cloud isn't evil — reputable cloud platforms (TaxDome, SmartVault, Canopy, Dext) have security programs, contracts and certifications. But the moment a slip leaves your machine, you've made a disclosure you now have to account for. Local-first sidesteps that question because there's no disclosure to manage.

Why pasting a SIN into ChatGPT is a problem

It's tempting: drop a messy T4A into a chatbot and ask it to "pull out the numbers." Here's why that specific move is risky for an accountant:

It's a disclosure to a third party. The SIN, name and income figures are now on a server you don't control, governed by terms you didn't negotiate.
You likely don't have consent. Under PIPEDA, disclosing a client's personal information generally requires their knowledge and consent. "I pasted it into a chatbot to save time" is not consent the client gave.
It can breach professional confidentiality. CPA codes of conduct treat client information as confidential; routing it through an unvetted public tool can conflict with that duty.
You may not know where it's stored. Data residency (is it in Canada or the US?) and retention are often unclear with consumer chatbots.

A SIN is the keystone identifier for identity theft and CRA fraud. Of every field on a Canadian tax slip, it's the one you least want sitting in a third party's logs.

What "local-first" actually means

Local-first (or on-device) means the AI model itself runs on your computer and the document is read, classified and processed there. Nothing is uploaded. Concretely, for a tool that sorts tax slips:

You point the app at a client folder full of scans and PDFs — T4s, T5s, T4A(P)s, RL-1s, RL-31s, RRSP/REER receipts.
The AI reads each page on the machine, using on-device OCR for scanned slips, and classifies what each one is.
It orders them to your firm's convention and exports one merged PDF.
The internet cable could be unplugged the entire time. The files never move off the disk.

That's the design behind PDF Insight: it organizes an 11-document bundle into one correctly ordered PDF in roughly 100 seconds on a 16GB Mac, fully on-device, bilingual EN/FR so it handles RL slips and French labels natively. Because the work happens locally, there's no cloud account holding your clients' tax data, and no "where did that SIN go?" to answer at audit time.

A PIPEDA-aware way to think about AI on tax files

You don't need to ban AI to stay onside — you need to be deliberate about the data path. A practical checklist:

Map the data flow. For any AI feature, ask the vendor plainly: does the document leave my device? Where is it stored, and in which country?
Prefer on-device for raw client documents. Keep SINs and full slips local; if you use cloud AI, use it for de-identified or non-sensitive tasks.
Get consent where you do disclose. If a cloud tool is genuinely necessary, make sure your engagement terms and client consent actually cover it.
Document your safeguards. Whichever path you choose, write down why — that record is what regulators and your CPA body want to see.

The honest framing: local-first isn't "more secure than every cloud vendor" as an absolute — it's that on-device processing removes an entire category of risk (third-party transmission and storage of client tax data) instead of trying to manage it.

Keep client tax data on your own machine

PDF Insight classifies, orders and merges Canadian and Québec tax slips on your own Mac or PC — on-device, bilingual, no file ever uploaded. Try it free for 14 days, no card required.

Download the free trial Founder Lifetime — $399 CAD once

FAQ

Is it safe to use AI on client tax documents?

It depends on where the AI runs. On-device (local-first) AI keeps SINs, T4s and RL-1s on your computer and is the lower-risk option. Cloud AI and chatbots transmit the documents to a third party, raising confidentiality and PIPEDA-consent questions.

Is it a problem to paste a SIN into ChatGPT?

Yes. You're sending personal information to a third party you don't control, generally without the client's informed consent, which can conflict with PIPEDA and your professional confidentiality duties.

What does local-first AI actually mean?

The AI model runs on your own machine and reads the documents there — nothing is uploaded. PDF Insight works this way, classifying and ordering slips on your Mac or PC with on-device OCR.

Does PIPEDA apply to how I use AI on tax files?

If you handle personal information in the course of commercial activity, PIPEDA (or a substantially similar provincial law like Quebec's Law 25) generally governs collection, use and disclosure, including consent. Sending data to a cloud AI is a disclosure; on-device processing avoids it. This is general information, not legal advice.