Secure, dependable proposal automation software

We value the trust our client's place in us when they choose QorusDocs for their business. That’s why we go above and beyond when it comes to security and compliance measures.
SOC 2 Type II

QorusDocs has completed a Service Organization Controls 2 Type II (SOC 2 Type II) audit with an independent 3rd-party evaluator certified by The American Institute of CPAs (AICPA). This audit uses the Trust Services Principles (Security and Privacy), published by AICPA, to evaluate the effectiveness of a service organization’s controls. QorusDocs can provide SOC 2 Type II report and attestations of compliance, upon request, at security@qorusdocs.com. QorusDocs is committed to continuous compliance and has implemented measures to keep the implemented SOC controls current.

Cloud Security Alliance (CSA) Security Trust Assurance and Risk (STAR)

QorusDocs has proudly achieved Cloud Security Alliance (CSA) STAR Level 1, a self-assessment that documents the security controls provided by various cloud computing offerings and helps users assess the security of a cloud service. Read QorusDocs’ completed Consensus Assessments Initiative Questionnaire (CAIQ).

GDPR

QorusDocs stores a minimum of Personally Identifiable Information (PII), and only as defined by our Client to deliver the Services. QorusDocs follows the policies below that are relevant to General Data Protection Regulation (GDPR):

  • Basis for Processing: QorusDocs collects and processes data to fulfill the performance of our contract with our Clients. Each Client, as the data controller, is responsible for determining the lawful basis for processing data and documenting EU data subject consent, if consent is the lawful basis for processing.
  • Data Storage: All data is stored securely in the United States in Microsoft Azure Datacenters.
  • Data Deletion, Correction, or Extraction: QorusDocs will export, correct, or delete data upon request by the Data Subject if the functionality is not already available self-service. Delete requests must be submitted to security@qorusdocs.com.
  • Marketing: QorusDocs does not market to, nor resell, any Contact Data collected on behalf of the Subscriber.
  • Incident Management, Consent, etc…
  • For more details about Qorus GDPR compliance, contact security@qorusdocs.com.
EU Standard Contract Clauses

The EU Standard Contract Clauses are designed to facilitate transfers of personal data from the European Economic Area (EEA) to other countries while providing appropriate safeguards for the protection of personal data. QorusDocs commits to the SCCs and defines its data subjects, categories of data, and technical and organizational security measures as part of it.

Ensuring your privacy

QorusDocs has a privacy policy, which outlines the steps we take to protect clients’ information. The policy is date-stamped and publicly available here.  QorusDocs privacy policy is aligned to GDPR.
Privacy

Unparalleled data security in the cloud

In addition to multiple internal security and privacy controls, QorusDocs uses Microsoft Azure as its hosting provider to ensure our software takes advantage of over 90 compliance certifications and a series of tools that simplify and accelerate cloud compliance.
Compliance Security

We're here to answer all your security questions

Our team is standing by to address any additional questions or concerns you might have about QorusDocs’ security and compliance features.

Please contact our Security and Compliance team at security@qorusdocs.com for assistance.