How we protect your data and our systems

Product security

SSO

When enabled, Single Sign-on (SSO) (Google, Office 365, Active Directory) allows you to authenticate users in your own systems without requiring them to enter additional login credentials

Permissions

We enable permission levels within the app to be set for your teammates.
Permissions can be set to include app settings, billing, user data or the ability to add or edit locations, teams and users.

Uptime

We have uptime of 99.9% or higher. 

Network and application security

Data Hosting and Storage

Qintil services and data are hosted on Microsoft Azure servers located in Australia and the EU.

Failover and DR

Qintil was built with disaster recovery in mind. All of our infrastructure and data are spread across multiple Azure availability zones and will continue to work should any one of those data centres fail.

Back Ups and Monitoring

Qintil uses a backup solution for datastores that contain customer data.

On an application level, we produce audit logs for all activity.

All actions taken on production consoles or in the Qintil application are logged.

Permissions and Authentication

Access to customer data is limited to authorized employees who require it for their job.

Qintil is served 100% over https. Qintil runs a zero-trust corporate network. There are no corporate resources or additional privileges from being on Qintil's network.

We have Single Sign-on (SSO), 2-factor authentication (2FA) and strong password policies on GitHub, Google, Azure, Stripe and Intercom to ensure access to cloud services are protected.

Additional Security features

Training

All employees complete Security and Awareness training annually.

Policies

Qintil has a comprehensive set of security policies covering a range of topics. These policies are updated frequently and shared with all employees.

Employee Vetting

Qintil performs background checks on all new employees in accordance with local laws. 

Confidentiality

All Qintil employee and contractor contracts include a confidentiality agreement.

PCI Obligations

All credit card payments made to Qintil go through our partner, Stripe. Details about their security setup and PCI compliance can be found at Stripe’s security page.
Was this article helpful?
Cancel
Thank you!