Security
Our approach to protecting your business and your clients' data.
Your data is yours
Export everything, anytime. Cancel anytime. No lock-in, no retention hoops, no "let me transfer you to retention." We mean it.
No passwords to lose
We use email-based authentication — no passwords to leak, no credential stuffing to worry about. Optional Google sign-in for convenience.
Encryption everywhere
All data in transit is encrypted with TLS 1.2+. Data at rest is encrypted by our cloud provider. We follow modern web security headers on every response.
Workspace isolation
Your workspace is your workspace. No cross-tenant data leakage, no accidental sharing, no "suggested for you" algorithms mining your projects.
We don't sell data
We don't sell your data, your clients' data, or your project data. We don't train models on your work. Your business is your business.
You control access
Every client share link is tokenized and revocable. You decide what clients see, what contractors see, and what stays internal.
Built for professionals
We're building toward SOC 2 compliance. GDPR and CCPA requirements are part of our architecture from day one — not bolted on later.
Questions? Reach us at hello@quolen.com