Keeping humans safe in a modern tech world is our purpose — so how we handle your data is held to the same standard we hold our clients to.
Our commitment
We collect only what we need, use it only for the reasons we tell you, and keep it only as long as those reasons hold.
How we protect it
Our security is governed by our own internal control framework, built on ISO/IEC 27001 and the SOC 2 Trust Services Criteria.
In practice:
Least privilege. Access is granted on need, and reviewed regularly. Encryption protects your data in transit and at rest. We design for failure. We assume things will go wrong and build to detect, contain, and recover — so a fault stays a fault and never becomes a breach. We monitor and log activity so we can spot and respond to issues fast. Trained people operate under clear policies for handling data.
Your privacy
We comply with the New Zealand Privacy Act 2020. You can ask what personal information we hold, have it corrected, and know how we use it.
When something goes wrong
If an incident affects your data, we contain it, tell you what we know, and tell you what we are doing. We would rather be open than comfortable.
Contact: privacy@qubitcyber.com