Home

About QX

Advantage QX

Our services

Methodology

News

Testimonials

Careers

Contact us

 

Information security and confidentiality

QX follows stringent security and confidentiality policies, which are based on ISO 27001 security standard guidelines.

Pre-hire background checks

Every potential employee’s background is verified by our HR department before the employee joins the company. A job offer is made, subject to positive verification, which includes validation with the HR department of at least 2 past employers.

NDA

Every QX employee signs a Non-disclosure Agreement (NDA) as a part of their induction formality. This agreement strictly restricts the employee on divulging any information obtained during the course of their employment with QX, even after the employment is discontinued. Failure to comply with this agreement is a criminal offence in India.

Physical security

• Random physical checks of the employee’s bags are done by the security guard while leaving the office premises

• Access to data/mail servers and the systems room is restricted to Network Staff

• The office is divided into separate areas based on nature of work and clients assigned

• The mobile phone usage policy restricts the usage of mobile phones on the floor
  

Technical security

• Network Group policy: Each team is provided with restricted access to the network and to the shared drives. This means that QX employees outside a particular team do not have access to information related to the clients assigned to that team. This results in only the necessary people being able to access information.

• Folder audit enabled: This means that all the client files have a log that keeps records of every user who accesses or modifies the files

• Internet access is restricted (provided only where required) and e-mails are constantly monitored for any unusual activity (such as a large attachment)

• CD, pen/flash drives disabled

• Latest anti-virus software ensures maximum protection against loss of data due to virus attacks

• Password policy: All users are required to change their password regularly. This is enforced as a system requirement.

• No employee is allowed to take work home. This ensures that all client data remains within the secured network. Laptops, with access to the client data, are not provided to any employee.