Questions about constituent and information assets, policies and procedures for information handling and stored data.
Yes. QR Planet's Acceptable Use Policy was developed in accordance with all compliance requirements, approved by management and communicated to Constituents.
All encryption keys at QR Planet are generated in a manner consistent with key management industry standards, and are managed and maintained for Scoped Data.
Yes. QR Planet's asset management program has been approved by management and communicated to all relevant constituents.
Yes. Any information handled by QR Planet is classified in accordance with common best praictes, compliance requirements and our internal policies.
Yes. All information asstets have an owner assigned. Management regularly monitors and reviews compliance with any regulatory body or applicable rulesets.
The policy for information handling include encryption, and electronic transmission security requirements. No Cloud or removalbe media is in use.
Data retention or destructions is performed in accordance with the GDPR, contractual and all applicable internal policies, regardless of storage or data types.
Regulated or confidential Scoped Data is only stored electronically and in databases; It is never contained in physical files.
No. QR Planet doesn't transmit, process or store sensitive data with open source software or within open source libraries.
All information is stored, processed and communicated consistent with its classification and in accordance to all regulatory measures/compliance requirements.