Your data, protected
QuantRidge is built with security as a first principle — not an afterthought. From encryption to compliance, every layer is designed to meet the demands of institutional finance.
Defense in depth
Multiple overlapping layers of security — because no single control is enough.
Enterprise Encryption
Strong encryption in transit (TLS). At-rest protection is provided by our managed hosting and database providers according to their security programs.
Access Control
Role-based access control with fine-grained permissions. Supports SSO, MFA, and OAuth 2.0 — integrates with your existing identity provider.
Audit Trails
Immutable, timestamped logs of every action in the platform. Compliance teams get full visibility; security teams get the evidence chain they need.
Penetration Testing
Annual third-party penetration tests by certified security researchers. Findings are tracked, remediated, and disclosed to enterprise customers.
Incident Response
A documented incident response plan with 24-hour SLAs for critical issues. Security events are classified, contained, and resolved with full post-mortems.
Data Privacy
Your data is yours. We never sell it, never train models on it, and provide export and deletion tooling. GDPR and CCPA data subject rights supported.
Privacy & legal alignment
We publish clear policies and support data-subject requests. Third-party subprocessors may hold their own certifications; QuantRidge does not represent that the application itself is SOC 2 certified unless separately disclosed.
Found a vulnerability?
We take security reports seriously. If you discover a potential vulnerability in the QuantRidge platform, please disclose it responsibly — we'll acknowledge your report within 24 hours.
We do not pursue legal action against good-faith security researchers.
Report a Vulnerabilitysecurity@quantridge.net · Encrypted email available on request