Articles on: Privacy and Terms of Use

Product and Data security at Qintil

How we protect your data and our systems

Product security


SSO


When enabled, Single Sign-on (SSO) (Google, Office 365, Active Directory) allows you to authenticate users in your own systems without requiring them to enter additional login credentials


Permissions


We enable permission levels within the app to be set for your teammates.
Permissions can be set to include app settings, billing, user data or the ability to add or edit locations, teams and users.


Uptime


We have uptime of 99.9% or higher. 


Network and application security


Data Hosting and Storage


Qintil services and data are hosted on Microsoft Azure servers located in Australia and the EU.


Failover and DR


Qintil was built with disaster recovery in mind. All of our infrastructure and data are spread across multiple Azure availability zones and will continue to work should any one of those data centres fail.


Back Ups and Monitoring


Qintil uses a backup solution for datastores that contain customer data.

On an application level, we produce audit logs for all activity.

All actions taken on production consoles or in the Qintil application are logged.


Permissions and Authentication


Access to customer data is limited to authorized employees who require it for their job.

Qintil is served 100% over https. Qintil runs a zero-trust corporate network. There are no corporate resources or additional privileges from being on Qintil's network.

We have Single Sign-on (SSO), 2-factor authentication (2FA) and strong password policies on GitHub, Google, Azure, Stripe and Intercom to ensure access to cloud services are protected.


Additional Security features


Training


All employees complete Security and Awareness training annually.


Policies


Qintil has a comprehensive set of security policies covering a range of topics. These policies are updated frequently and shared with all employees.


Employee Vetting


Qintil performs background checks on all new employees in accordance with local laws. 


Confidentiality


All Qintil employee and contractor contracts include a confidentiality agreement.


PCI Obligations


All credit card payments made to Qintil go through our partner, Stripe. Details about their security setup and PCI compliance can be found at Stripe’s security page.

Updated on: 23/11/2018

Was this article helpful?

Share your feedback

Cancel

Thank you!