Your trust is of the utmost importance, and we are committed to ensuring that your information is safeguarded to the highest standards.
At Qase, we take the security and privacy of your data seriously.
This page provides an overview of our security measures, privacy policy, and other relevant information to help you understand how we protect your data.
Encryption
In transit β all data is encrypted using TLS (Transport Layer Security) for every connection between your browser and Qase servers.
At rest β all stored data is encrypted with AES-256, the industry standard for data-at-rest encryption.
Infrastructure
Qase runs on Amazon Web Services (AWS) in the US-East-2 (Ohio) region.
Nightly backups are performed automatically, with point-in-time recovery available to restore data to any second within the backup retention window.
Certifications & Compliance
Certification / Program | Details |
SOC 2 Type II | Independently audited controls for security, availability, and confidentiality. |
SOC 3 | Public-facing summary report of SOC 2 controls. |
ISO/IEC 27001:2022 | Certified information security management system (ISMS). |
Annual penetration testing | Third-party penetration tests conducted every year; remediation tracked to completion. |
GDPR | Full compliance with the EU General Data Protection Regulation, including data processing agreements and sub-processor transparency. |
Trust Center
Visit the Qase Trust Center at legal.qase.io to:
Review and download compliance reports (SOC 2, SOC 3, ISO 27001 certificate).
Sign a mutual NDA (mNDA) through the automated flow before accessing sensitive documents.
View the current sub-processor list.
Access privacy and security policies.