Skip to main content

Overview

Tight integrates directly with Amazon S3 to periodically upload raw accounting data to your own S3 buckets. By pushing data into your S3 infrastructure, Tight eliminates the need for your data team to build direct connections to the Tight API, allowing your team to work in the data stack they’re already using. Data is exported in Parquet file format on daily, weekly, or monthly intervals, including bank linkage data, invoices, lifecycle events, and transactions. Learn more about available data types and use cases in the Data Lakes guide.

Create an Amazon S3 Bucket

If you haven’t done so already, create an AWS account and set up an S3 bucket where Tight will upload your data. You can name this bucket anything you’d like; “tight-api-data” is used for the examples shown below. Create S3 Bucket Make note of the AWS Region that you selected, as you’ll need to share this with Tight.

Configure IAM Policy for Programmatic Access

Next, create an IAM policy to grant programmatic access to your S3 bucket. In the AWS IAM Console, navigate to Policies and click “Create policy”. Select the JSON option and paste the following policy: 
{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:ListBucket"
            ],
            "Resource": [
                "arn:aws:s3:::tight-api-data"
            ]
        },
        {
            "Effect": "Allow",
            "Action": [
                "s3:PutObject",
                "s3:GetObject",
                "s3:DeleteObject"
            ],
            "Resource": [
                "arn:aws:s3:::tight-api-data/*"
            ]
        }
    ]
}
Replace tight-api-data with your actual bucket name in both Resource ARNs.
IAM Policy JSON Click “Next: Tags” (or “Next: Review” depending on your AWS console version): Policy Next Step On the review step, provide a descriptive name like “tight-api-data-access” and click “Create policy”: Policy Review

Create IAM User

Create an IAM user that will be used by Tight to access your S3 bucket. In the AWS IAM Console, navigate to Users and click “Add user”. Provide a descriptive username like “tight-api-data-user”: Add IAM User On the permissions step, select “Attach existing policies directly” and search for the policy you created (e.g., “tight-api-data-access”): Attach Policy to User Click through the remaining steps: Review User On the final review, click “Create user”: Create User After the user is created, you’ll see the option to “Download .csv” containing the access credentials. Download this file securely: Download Credentials CSV
For enhanced security, create a dedicated IAM user specifically for Tight with permissions limited only to the target S3 bucket.

Securely Share Access with Tight

Contact Tight directly at api@tight.com for instructions on how to securely share:
  • The IAM credentials CSV file you downloaded
  • Your S3 bucket name
  • The AWS region where your bucket is located
Once configured, Tight will automatically begin uploading data files to your S3 bucket based on your preferred schedule (daily, weekly, or monthly). Files are organized in a consistent directory structure within your bucket, making it easy to integrate with your existing data pipelines and analytics tools.