Quik

Security

Effective March 7, 2026

Security is foundational to Quik. Your product data is sensitive, and we treat it that way.

Infrastructure

  • Encryption in transit — All data is encrypted using TLS 1.3
  • Encryption at rest — AES-256 encryption for all stored data
  • Network isolation — Services run in isolated virtual private clouds
  • DDoS protection — Automated traffic filtering and rate limiting
  • Regular patching — Automated security updates across all infrastructure

Application Security

  • Authentication — SSO (SAML 2.0, OIDC), MFA, and session management
  • Authorization — Role-based access control with least-privilege defaults
  • API security — Token-based authentication, rate limiting, and input validation
  • Audit logging — Comprehensive logs of all user and system actions
  • Dependency scanning — Automated vulnerability scanning in CI/CD

Data Privacy

  • Data isolation — Each customer's data is logically isolated
  • No training on your data — Your data is never used to train AI models
  • Data residency — Choose US, EU, or self-hosted deployment
  • Data deletion — Full data deletion within 30 days of request
  • Minimal collection — We only collect data necessary to provide the service

Compliance

GDPR

Compliant

Full GDPR compliance including data processing agreements, right to erasure, and data portability.

SOC 2 Type II

In progress

Audit in progress covering security, availability, and confidentiality trust service criteria.

HIPAA

In progress

Business Associate Agreements available for healthcare customers on enterprise plans.

ISO 27001

In progress

Information security management system certification in progress.

Deployment Options

Cloud (US)

Hosted in US regions. Fully managed, always up to date. Data encrypted at rest and in transit.

Cloud (EU)

Hosted in EU regions. Fully managed with GDPR-ready data residency out of the box.

Self-hosted

Deploy on your own infrastructure. Full control over data, networking, and access policies.

Responsible Disclosure

If you discover a security vulnerability, please report it to security@quik.com. We take all reports seriously and will respond within 24 hours.

Questions?

For security-related inquiries, contact us at security@quik.com.