Security

A non-sensitive overview of security practices used by QVM Research.

Last updated: July 14, 2026

Transport security

The Site is served over HTTPS. Modern TLS is used for all production traffic.

Access controls

Authenticated data (accounts, portfolios, saved research, preferences) is protected by access controls. Public research pages and private user data are separated so that private data is not exposed to unauthenticated browsers.

Credentials

Sensitive credentials and administrative keys are not intentionally exposed to the browser. We use least-privilege access for background operations.

User responsibilities

Reporting a security issue

If you believe you have discovered a security issue, please contact us via the Contact page with a clear description and reproduction steps. Please do not publicly disclose details until we have had a reasonable opportunity to investigate.

What this page does not claim

QVM Research does not claim to be breach-proof, fully audited, or certified against any specific standard. Where certifications exist, they will be listed here explicitly.