Trust Center
Security, compliance, and privacy information for Qontiv. One page for procurement, legal, and security teams.
Security overview
Qontiv is hosted on Microsoft Azure (US East). All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Access is controlled via role-based permissions with MFA support.
security@qontiv.comCompliance
- SOC 2 Type II Audit in progress (Q3 2026)
- GDPR Controls implemented
- CCPA Controls implemented
- IATF 16949 compatible Designed for
- AS9100 Rev D compatible Designed for
- ISO 13485 / FDA QMSR compatible Designed for
- 21 CFR Part 11 compatible Designed for
Sub-processors
We provide 30 days' advance notice of any new sub-processor. Subscribe to updates to receive email notifications.
View sub-processor list →Data Processing Agreement
Our standard DPA is available below. For customers who require a countersigned DPA, contact us.
Uptime & status
Current service status, historical uptime, and incident reports.
status.qontiv.com →Responsible disclosure
If you've found a security vulnerability, please report it responsibly. We acknowledge reports within 48 hours and aim to resolve critical vulnerabilities within 7 days.
security@qontiv.com