Security & Data Handling

Your workspace data belongs to you. Quaestor does not claim ownership over your business processes, documents, org structure, internal workflows, or operational records.

Customer data is not used to train public AI models. Where AI features are used, they are used to help structure, retrieve, or assemble customer-provided operational knowledge inside the customer workspace.

If an AI feature cannot meet that rule, the policy changes before the feature ships.

Production traffic uses HTTPS/TLS in transit.

Production application infrastructure is hosted on AWS. The current product stack uses an Angular client, AWS API Gateway, AWS Lambda APIs, Drizzle, PostgreSQL on Amazon RDS, Amazon S3-backed uploads, Cognito authentication, and AWS Secrets Manager for database credentials.

At-rest encryption is confirmed for S3-backed uploads in the infrastructure code. We are verifying the live production database encryption setting before making a broader at-rest encryption claim.

Workspace access is permissioned. Customers control who can view, edit, and administer their atlas.

Fine-grained role-based permissions are on the roadmap. Do not read this as a mature enterprise RBAC claim.

Production data is backed up on a recurring schedule through the managed database layer.

Formal recovery procedures are maintained and tested as the platform matures. Quaestor does not currently claim SOC 2-tested recovery controls, RTO, or RPO commitments on this page.

Customer workspace data is retained while the account is active. After cancellation or written deletion request, data is deleted according to our retention schedule, except where retention is required for legal, billing, security, or backup purposes.

Quaestor is not currently SOC 2 certified. We are building toward a formal compliance program as customer requirements demand it.