Skip to main content

Quorum Data Security

Comprehensive Data Security

Quorum is SOC 2, Type II certified with a dedicated Information Security Team. Read on to learn how our comprehensive approach to data security keeps client data secure.

Quorum's Five Pillars of Data Security

Application Security

Protected Across Desktop & Mobile

All data, whether in transit or at rest, is encrypted with a grade A encryption rating from Qualys. Encryption is enforced with enterprise login controls, including optional two-factor authentication and SSO, and built-in protection against XSS, SQLi, and many other attack patterns.

Infrastructure Security

Securely Hosted

Quorum is entirely hosted on Amazon Web Services (AWS), a best-in-class infrastructure as a service provider, and uses a combination of AWS-provided, third party, and in-house systems in order to protect the servers, databases, firewalls, backups, and other components that Quorum is built on.

Endpoint Security

Proactive Threat Monitoring

Quorum contracts Crowdstrike, an endpoint security firm used by many government organizations and Fortune 100 companies, to identify and block issues before they occur and provide anti-virus protection. Our hardened server endpoints are protected by both Crowdstrike as well as a variety of other intrusion detection and prevention systems.

Personnel Training and Policies

Comprehensive Employee Training

Every Quorum employee is required to complete a background check prior to employment, non-disclosure agreement (NDA), and mandatory data security training on the first day. These are supplemented with strict internal access limitations in regard to client data.

Legal and Contractual Compliance

All Data is Your Own

Clients own all of their own data within Quorum. No information is shared between client accounts or with third parties. Quorum maintains complete GDPR compliance and continuously provides guidance to clients on how they can use Quorum’s products to remain GDPR compliant.