Your data security is our top priority

QuantERP is built from the ground up to protect your financial data with enterprise-grade security.

Infrastructure

  • Hosted on Railway with automatic failover
  • PostgreSQL 16 with point-in-time recovery
  • Encrypted at rest with AES-256
  • Encrypted in transit with TLS 1.3
  • Automated daily backups with 30-day retention

Data Isolation

  • Schema-per-tenant architecture — your data is never in the same tables as other customers
  • Tenant middleware enforces search_path on every request
  • Cross-tenant access is architecturally impossible
  • Separate encryption keys per tenant (Enterprise)

Access Controls

  • Role-based access control (RBAC) with 5 built-in roles
  • Two-factor authentication (2FA) support
  • Session management with configurable timeout
  • IP allowlisting (Enterprise)
  • Audit trail of all user actions

Application Security

  • Input validation with Zod schemas on all API endpoints
  • Parameterized queries via Prisma ORM — no SQL injection
  • CSP headers, CORS policies, and rate limiting
  • Dependency scanning with automated alerts
  • Regular penetration testing

Compliance

  • SOC 2 Type II (roadmap — targeting Q4 2026)
  • GDPR compliant with DPA available
  • CCPA compliant
  • Data Processing Agreements for all sub-processors

Have security questions?

Contact our security team at security@quanterp.com or get in touch.