Security
A non-sensitive overview of security practices used by QVM Research.
Last updated: July 14, 2026
Transport security
The Site is served over HTTPS. Modern TLS is used for all production traffic.
Access controls
Authenticated data (accounts, portfolios, saved research, preferences) is protected by access controls. Public research pages and private user data are separated so that private data is not exposed to unauthenticated browsers.
Credentials
Sensitive credentials and administrative keys are not intentionally exposed to the browser. We use least-privilege access for background operations.
User responsibilities
- Use a strong, unique password for your account.
- Do not share your account credentials.
- Do not submit passwords, government IDs, or non-public financial account information through support forms or email.
Reporting a security issue
If you believe you have discovered a security issue, please contact us via the Contact page with a clear description and reproduction steps. Please do not publicly disclose details until we have had a reasonable opportunity to investigate.
What this page does not claim
QVM Research does not claim to be breach-proof, fully audited, or certified against any specific standard. Where certifications exist, they will be listed here explicitly.