QRM&Workspaces
Sign in Open a workspace
Trust & security

Your operation runs on this. So we take it seriously.

QRM is single-tenant where it counts. No cross-tenant indexing. No training on your data. Every QaiS action is audited and reversible. Here's exactly how — in plain language.

All systems operational status · status.qais.app →
01 · Tenant

Single-tenant by default.

Every workspace gets its own database row, blob namespace, and identity scope. Cross-tenant queries are blocked at the database, not just the application.

02 · QaiS

No cross-tenant training.

QaiS never trains on your tenant data. Prompts and context stay scoped to the workspace and are not retained by the model provider beyond the request.

03 · Audit

Every action, reversible.

Every QaiS tool call and every user action is logged with the actor, before/after diff, and one-click undo. Audit log retention is plan-tiered.

04 · Exit

Your data, portable.

Full export anytime in JSON + raw blobs. 30-day backup window after cancellation, then a verified hard-delete with a signed certificate.

A · Architecture

Single-tenant where it matters.

QRM is multi-tenant under the hood for cost efficiency, and single-tenant where it counts — at the database row, the file namespace, and the search index. Enterprise plans get full single-tenant deployments: their own database cluster, their own storage bucket, their own region.

Cross-tenant queries are impossible by construction. Tenant ID is enforced at the SQL row-security layer, not just the application code. Every read and write carries the calling tenant's ID, and the database refuses queries that try to read another tenant's rows.

You can run on a regional cloud of your choice: US-East, US-West, EU-West (Frankfurt), UK (London), or APAC (Sydney) on Enterprise.

Tenant isolation · row-level security
Acme Co
tenant_id=t_acme · us-east-1
projectsyour data
messagesyour data
filesyour data
Beta LLC
tenant_id=t_beta · us-west-2
projectstheir data
messagestheir data
filestheir data
HQE Systems
tenant_id=t_hqe · us-east-1
projectstheir data
messagestheir data
filestheir data
RLS PostgreSQL row-level security enforces tenant_id on every read/write. Cross-tenant reads return 0 rows — at the DB.
B · QaiS data handling

QaiS reads your tenant. It doesn't learn from it.

QaiS uses third-party LLM providers (Anthropic, OpenAI) under data-processing agreements that prohibit model training on your data. Prompts and context are scoped to the calling tenant, sent over TLS, and the provider keeps them only for the duration of the request.

For Enterprise tenants, we offer self-hosted inference: QaiS runs against open-weight models inside your dedicated tenancy, so your data never leaves your region.

Every QaiS tool call is recorded with the user, the prompt, the tool args, the result, and a one-click revert. You can see the trace for any action your team or QaiS has ever taken.

QaiS data flow · per request
01 User asks QaiS something in their workspace authed
02 QaiS scopes context to that tenant only (RLS) tenant-only
03 Prompt sent over TLS to LLM provider · DPA tls 1.3
04 QaiS calls tools (in tenant) and returns result audited
Prompts are never retained by the LLM for training blocked
QaiS cannot read other tenants' data blocked
C · Compliance & certifications

Audited.
Documented.

Independent audits, on a schedule. We publish reports under NDA — email security@qais.app for a copy.

SOC 2
TYPE II

SOC 2
Type II

audited annually · since 2024

Independent attestation covering security, availability, confidentiality. Latest report covers 2025-Q3 → 2026-Q2.

Request report →
GDPR
CCPA

GDPR &
CCPA

DPA available · EU SCCs

Standard Contractual Clauses, EU data residency (Frankfurt), processor obligations met. DPA on Business and Enterprise.

View DPA →
SOC 2
ISO
2027

ISO 27001
in progress

audit scheduled · Q4 2026

Information security management system. Pre-audit gap analysis complete. Certification expected Q1 2027.

Status →
D · Subprocessors

Who touches your data, and what for.

A complete, current list. We give 30 days' notice before any change on Business and Enterprise plans.

Provider Purpose Data accessed Region
Amazon Web Services Hosting · compute · storage · CDN All tenant data at rest & in transit us-east-1 · eu-w-1
Anthropic QaiS inference · default Prompt context · no retention us-east
OpenAI QaiS inference · fallback Prompt context · no retention us-east
Stripe Billing · payment processing Billing email, plan, payment method us · eu · uk
Postmark Transactional email · magic links Recipient email, sender metadata us-east
Cloudflare DNS · DDoS · domain mgmt for BYO domain DNS · routing metadata only global edge
Datadog Observability · error monitoring Logs & traces · PII scrubbed us-east
E · Incident response

When something breaks, we tell you fast.

We page on real signals — not vague alerts. On-call engineers acknowledge within 5 minutes. We publish a public status page incident, send affected workspaces an email, and follow up with a post-mortem within 5 business days.

For security incidents that involve customer data, we notify affected workspaces within 24 hours of confirmation, regardless of contractual SLA. We retain transparency over face-saving every time.

Standard incident timeline
T+0 Alert firesAutomated monitoring detects degradation paged
T+5m On-call ackEngineer acknowledges & begins triage 5m SLA
T+15m Status pagePublic incident posted at status.qais.app 15m SLA
T+30m Customer emailAffected workspaces receive direct notification 30m SLA
T+5d Post-mortemPublic root-cause analysis & remediation 5 BD
T+24h Security onlyNotification of confirmed data incident 24h SLA
F · Talk to us

A real human reads security@.

Questions about controls, requests for audit reports, vulnerability disclosures, or DPAs — email security@qais.app. We respond within one business day; security disclosures get same-day.

security@qais.app Request DPA · MSA → Report a vulnerability → Read full policy doc →

Run on a system you own. Backed by people you can call.

Five minutes to open a workspace. A signed MSA on Enterprise.

Open a workspace Talk to sales →