Quorum takes multiple proactive measures to ensure the continued protection of our clients’ data.
Quorum's Five Pillars of Data Security
Protected Across Desktop & Mobile
All data, whether in transit or at rest, is encrypted with a grade A encryption rating from Qualys. Encryption is enforced with enterprise login controls, including optional two-factor authentication and SSO, and built-in protection against XSS, SQLi, and many other attack patterns.
Quorum is entirely hosted on Amazon Web Services (AWS), a best-in-class infrastructure as a service provider, and uses a combination of AWS-provided, third party, and in-house systems in order to protect the servers, databases, firewalls, backups, and other components that Quorum is built on.
Proactive Threat Monitoring
Quorum contracts Crowdstrike, an endpoint security firm used by many government organizations and Fortune 100 companies, to identify and block issues before they occur and provide anti-virus protection. Our hardened server endpoints are protected by both Crowdstrike as well as a variety of other intrusion detection and prevention systems.
Personnel Training and Policies
Comprehensive Employee Training
Every Quorum employee is required to complete a background check prior to employment, non-disclosure agreement (NDA), and mandatory data security training on the first day. These are supplemented with strict internal access limitations in regard to client data.
Legal and Contractual Compliance
All Data is Your Own
Clients own all of their own data within Quorum – not Quorum. No information is shared between client accounts or with third parties. Quorum maintains complete GDPR compliance and continuously provides guidance to clients on how they can use Quorum’s products to remain GDPR compliant.