Quantexa

Information Security

We Value Our Clients’ Data

Download our policy

Overview

Information and systems are considered valuable Quantexa assets which require protection against varying types of internal and external security risks. These risks have the potential to threaten the confidentiality, integrity, and availability of Quantexa assets.

Quantexa is committed to promoting effective controls across the range of information, technical, personnel, and physical security to maintain the confidentiality of our and our client’s data. We maintain and protect all the information we use or store in a manner that is consistent with our relevant professional, ethical, legal, regulatory, and contractual requirements.

The Quantexa Board and the Senior Management Team, who are represented by the Head of Information Security and the Information Security Steering Group (“ISSG”), fully endorse, and support all Information Security policies, standards, guidelines, processes, and procedures which are expected to be adhered to. Prescribed controls are implemented throughout the organization supporting the continuous review and improvement of the Information Security Management System (“ISMS”).

Our commitment to our clients

To reinforce our commitment to Information Security, Quantexa meets and exceeds the ISO/IEC 27001 standard requirements and has been certified since March 2018. Our framework is regularly assessed to ensure the highest possible level of compliance from an independent external audit.

As an Independent Software Vendor (“ISV”), our software is built to modern security industry standards to meet our client’s needs and most requirements covering global geographic and regulatory jurisdictions. Our security approach focuses on security by design, security governance, risk management and compliance. Our software is developed within secure build environments to protect the integrity of the products supplied to our clients. We adopt where possible industry best practices across all our own cloud environments, including encryption for data at rest and in transit, network security and hardening, enhanced access control, system monitoring, logging, and alerting, and more.

Information Security is at the core of our culture. We ensure that we educate our people and regularly refresh their knowledge so they each have a clear understanding of our expectations, and of the changing nature of the threats to the security of our information.

The ISMS is achieved using various controls that are set out within the various policies, standards, guidelines, processes, and procedures. Conforming with these controls is critical in ensuring that Quantexa meets all its obligations to its stakeholders and clients.

These controls are continually monitored, reviewed, and improved upon to ensure that security and business objectives are met. This is operated in conjunction with other business management processes and incorporates the applicable statutory and contractual requirements.

Quantexa regards information and systems as valuable assets that require protection against a range of internal and external security risks. These risks have the potential to threaten the confidentiality, integrity, and availability of Quantexa's assets. 

To ensure the confidentiality of our clients' and our own data, Quantexa is committed to implementing effective controls across information, technical, personnel, and physical security. We handle and safeguard all information we use or store in a manner that is consistent with our relevant professional, ethical, legal, regulatory, and contractual obligations. 

The Head of Information Security and the Information Security Steering Group (ISSG) represent the Senior Management Team and the Quantexa Board, fully endorsing and supporting all Information Security policies, standards, guidelines, processes, and procedures expected to be followed. Prescribed controls are implemented throughout the organization, supporting the continuous review and improvement of the Information Security Management System (ISMS). 

Quantexa is fully committed to maintaining the highest levels of information security for our clients. We exceed the requirements of ISO/IEC 27001:2013, ISO/IEC 27017:2015 and that of AICPA SOC 2. Our security framework is regularly audited by independent external parties to ensure the utmost compliance. 

For further information, please review our Information Security Policy, and if you have any questions regarding information security, please contact the security team by completing the form below.

Fraud and Impersonation Alert

Fraudsters can set up website domain names which are confusingly similar to real domains, in order to try to fool clients into thinking they are corresponding with a genuine Quantexa email address or domain.

Here is a list of non-owned Quantexa domains

We therefore recommend the following precautions when corresponding with Quantexa, and in particular when being asked for confidential or personal information, or when dealing with any payment requests:

  1. Always verify the sending address and make sure it says Quantexa.com in the address and the headers of the email

  2. Ensure that any reference quoted corresponds with what is expected or has been known/verified in the past.

  3. Check the full invoice calculation to ensure accuracy of charges, as figures in these fake invoices are often miscalculated.

  4. Confirm that logos / branding is consistent with previous correspondence.

  5. Check to ensure that the bank details are correct.  Any changes to our bank details would always be officially communicated to you rather than simply changed on an invoice.

  6. Be alert to any change in style or tone of an email.  If it seems out of character or inconsistent with the style or language of prior emails,  this may be an indication that the sender is someone other than the person you are accustomed to dealing with.

  7. If unsure, always get in touch with Quantexa for verification/assistance. Don’t simply use unvalidated phone numbers provided on the invoice, as those often ring to fraudulent phone systems where they’ll falsely validate bad account information.

If you suspect that you have received fraudulent correspondence related to Quantexa, please notify us via the form below.

Speak with our Team

Please feel free to contact our team if you have any questions surrounding information security.

Loading