Trust & Safety

Security at Quill

Our Commitment to Security

Security is core to everything we build at Quill. Our platform was designed with the same standards our founders upheld at Palantir building AI technology for the U.S. Department of Defense and Fortune 500 institutions: strict access controls, scoped agent permissions, and end-to-end audit trails.

We encrypt data in transit and at rest, enforce least-privilege access across our infrastructure, and never train models on your data. Every agent action is logged and auditable, and sensitive operations can require human approval before they run.

Whether or not you operate in a regulated industry, we treat your data with the highest level of care. When you work with Quill, your data stays yours, and every layer of our stack is built to earn and maintain your trust.

Data Protection

Your data is yours. We never use customer data to train models, and we never share it with third parties except the subprocessors required to deliver our service.

  • Encryption. All data is encrypted in transit (TLS 1.2+) and at rest (AES-256).
  • Credential isolation. Credentials for third-party application integrations are never stored in Quill's own database; they are held by a dedicated integration platform under its own encryption and access controls.
  • Tenant isolation. Customer data is logically separated, with strict controls preventing cross-tenant access.
  • Data retention. You control what we retain and for how long. Deletion requests are honored within contractual timelines.
  • No training on customer data. Your inputs, outputs, and agent activity are never used to train Quill's or any third-party models.

AI & Agent Governance

Quill is built for teams deploying AI agents in real work, where agents read data, trigger workflows, and act on behalf of the business. Governance is built into the runtime, not optional.

  • Isolated execution environments. Every customer automation runs in an isolated, short-lived serverless environment, fully separated from other customers and from Quill's control plane.
  • Scoped permissions. Every agent operates under least-privilege access, with explicit scopes for what it can read, write, and act on.
  • Human-in-the-loop controls. Sensitive actions can require human approval before they execute.
  • Auditable by design. Agent activity is captured end-to-end, giving admins visibility into every run.
  • Model provider controls. We work with model providers under no-training terms so your data is never used to train their models.

Infrastructure & Access

  • Cloud infrastructure. Quill runs on enterprise cloud infrastructure with defense-in-depth controls across network, compute, and storage layers. Production and non-production environments are logically isolated in separate accounts.
  • Access controls. Internal access to production systems requires SSO and MFA, is scoped by role, and is logged and reviewed.
  • Monitoring. We continuously monitor infrastructure health, error rates, and latency. Critical alerts are routed directly to the on-call engineer.
  • Incident response. We maintain a documented Security Incident Response Plan with a dedicated on-call rotation. Internal and external parties can report security issues to security@tryquill.com.
  • Secure development. Code is reviewed before merge via protected branches; production deployments require authenticated, authorized personnel to trigger through our automated deployment pipeline.
  • Vulnerability management. We continuously scan our infrastructure for known vulnerabilities. Findings are prioritized by severity and remediated through our standard change management process.
  • Automated backups. Databases are backed up automatically with point-in-time recovery. Backups are encrypted at rest.
  • Penetration testing. We conduct third-party penetration testing on a scheduled basis to independently validate our security controls.

Employee & Endpoint Security

  • Security training. All employees complete mandatory security awareness training and acknowledge Quill's security policies during onboarding.
  • Background checks. All employees undergo third-party background checks as part of the hiring process.
  • Device management. Employees use company-provided laptops only; no personal devices on production systems or sensitive data. All laptops have full-disk encryption, automatic screen lock, and active malware protection enforced.
  • Endpoint monitoring. Quill deploys a continuous endpoint compliance agent to all laptops, verifying encryption, password policy, screen lock, and OS patch level. Out-of-compliance devices trigger immediate alerts.
  • Access revocation. Access to all systems is revoked within 24 hours of an employee's last day, or sooner if warranted.

Subprocessors

Quill relies on the following subprocessors to deliver our service. Each maintains its own security program and third-party audit reports.

Provider Purpose
Amazon Web Services Primary cloud infrastructure - compute, database, storage, networking, and secrets management
Vercel Isolated execution environments for building and running customer automations
Nango OAuth credential management and event ingestion for third-party application integrations
Datadog Infrastructure monitoring, log ingestion, and observability
Anthropic Large language model provider for AI-assisted features, under no-training terms

Compliance

We're building Quill to meet the compliance requirements of the customers we serve.

SOC 2 Type I In progress - targeting May 2026
SOC 2 Type II Follows Type I
HIPAA In progress - targeting May 2026
Penetration Test In progress - targeting May 2026

Responsible Disclosure

We welcome reports from security researchers. If you've found a vulnerability, please email security@tryquill.com. We'll acknowledge your report, investigate promptly, and keep you updated on remediation.

Questions about security? Reach us at security@tryquill.com.