Security & Confidentiality

Qonviz is built for sensitive work: a sterile, tenant-isolated workspace for evaluating technical feasibility and business relevance of quantum technology — In-Platform Only.

What "In-Platform Only" means

•Customer inputs, files, prompts, and generated reports are processed inside Qonviz.
•Analyses run in an environment where outbound network access is blocked (no internet egress during analysis).
•Your content is not used to train any external models.

Public Research, without exposing customer content

Qonviz can include competitors, standards, and regulatory context without performing any external web calls at analysis time.

How it works

•Qonviz maintains a Public Research Cache: a continuously updated library of public sources (standards bodies, regulators, vendor documentation, and other allow-listed public references).
•This public library is collected by a dedicated ingestion process that runs independently of customer analyses.
•When you run an analysis, Qonviz retrieves relevant public context from the cached library only.

Strict separation (one-way)

•Public Research Cache → can be referenced inside an analysis (read-only).
•Customer data → never flows into the Public Research Cache.
•No customer prompts/files are used as search queries to the public internet.

In every report

•"Public sources last updated: YYYY-MM-DD"
•Citations include the public source URL and publication metadata (when available).

Tenant isolation

Each customer operates in a tenant-isolated workspace. Data is scoped by workspace: files, runs, outputs, and history are not visible across tenants.

Authentication & access control

•Multi-factor authentication (MFA) is enforced on onboarding (where enabled).
•Access is restricted to authorized users within the workspace.

Controlled export (default-safe)

•Exporting reports or data is a deliberate, user-initiated action.
•Qonviz is designed to minimize accidental leakage (sterile by default).

Encryption

•Data is protected in transit (TLS).
•Data is protected at rest (encryption at rest).

Logging & analytics (metadata-only)

•Operational logs are designed to avoid storing customer content.
•Optional analytics, when enabled, are limited to aggregate operational metrics (e.g., feature usage counts, latency) — not raw prompts, files, or report text.

Data retention & deletion

•Qonviz supports retention controls and the ability to purge analysis artifacts (where enabled).
•Deleted content is removed from active storage and is no longer accessible within the product.

Security claims

Qonviz does not claim SOC 2 or ISO certification unless explicitly stated. We focus on concrete, verifiable controls and clear data boundaries.

← Back to Home View Public Research Library →