Security at QRQC
Last updated: 2026-04-22
Your operational data is confidential and critical. Security is a foundational commitment of the platform, not an add-on.
Encryption
All data is encrypted in transit using TLS 1.3 and at rest using AES-256. Secrets, credentials, and private keys are stored in a dedicated key-management system with strict access controls.
Access control
Role-based access control is enforced at every layer: role, site, and module. Administrative access to production systems is limited to a small on-call team, requires hardware-key MFA, and every session is logged.
Compliance
Our information security management system is aligned with ISO/IEC 27001. We comply with the GDPR and offer a Data Processing Agreement with every contract. Our templates support ISO 9001, IATF 16949, VDA 6.3, AS9100, and ISO 13485 workflows.
Data residency and continuity
Customers choose where their data is hosted: France, Germany, United States, UAE, or dedicated on-premise infrastructure. We run daily encrypted backups, commit to 99.9% uptime, and test our disaster-recovery procedures regularly.
Responsible disclosure
If you believe you have found a security issue, please email contact@qrqc.app. We will acknowledge your report within 2 business days and keep you updated as we investigate. We do not take legal action against researchers acting in good faith.