Trust
Security at iqcloud
How we keep your business data secure, and the controls we apply across every site we run.
The loudest promise
What we DON'T do.
We do not sell your data.
Not to advertisers, not to data brokers, not to AI training providers. Your business runs on iqcloud; your data stays on iqcloud.
We do not use your data to train AI models.
The AI features you use day to day run as inference: your prompts and business data are sent to a provider-hosted model only to generate your result, and are not retained afterward — unless you ask us to keep them or the law requires it. That content is never used to train any model and never enters anyone's shared training corpus — not ours, not a provider's.
If we ever offer a feature that learns from your history — for example, forecasting demand or predicting cancellations — it is trained only on your own data, for your own workspace, never pooled with other customers and never folded into a shared model. Those features are opt-in, and you can turn them off at any time.
We do not share your data with third parties.
Except subprocessors strictly required to deliver the service — Azure to host it, Stripe to charge for it if you take payments, and Anthropic for AI inference, which is not used to train any model. The full list is below.
Controls
What we do.
The controls below are baked into the platform and apply to every workspace by default — there is no premium tier you have to buy to get them.
Microsoft Entra-backed identity.
Workload identity for service-to-service auth; no shared secrets passed between systems. Operator sign-in uses your existing tenant.
Encryption in transit and at rest.
TLS 1.2+ at the public edge with HTTPS-only forwarding; Azure-managed encryption keys for data at rest, with each tenant isolated in its own storage account and Key Vault.
SOC-aligned access controls.
Least-privilege role design across the platform; production access requires a documented approval and is time-bound.
Audit log on privileged writes.
Operator invites, role changes, billing edits and break-glass access are written to a hash-chained, append-only audit log with actor and timestamp.
Key Vault for secrets.
No secret values land in code, container images, or environment files in source; everything is referenced from Key Vault at runtime.
Managed identities for service-to-service auth.
Workloads authenticate as themselves to Azure resources; nothing is talking to a database with a checked-in connection string.
Image scanning and canary gates on deploys.
Site and edge container builds are scanned for CVEs before they can be promoted, and roll out to a zero-traffic canary that must pass health checks before any traffic shifts.
Subprocessors
Who else touches your data.
A subprocessor is any third party that processes customer data on our behalf. We keep the list short and current. You will be notified before any addition.
| Subprocessor | Purpose | Detail |
|---|---|---|
| Microsoft Azure | Hosting | Compute, storage, identity, networking. Primary region is your choice at workspace creation. |
| Microsoft Graph | Email & Teams | Used only when you enable email/Teams notifications. Disabled by default. |
| Stripe | Payments | Required only if you take payments through iqcloud. Card numbers never touch our servers. |
| Anthropic | AI inference | Provider-hosted LLM inference under a zero-retention agreement (prompts not retained unless you direct retention or the law requires it). Prompt content is not used to train any model. |
| Azure OpenAI | AI inference | In-tenant provider-hosted LLM inference and embeddings under zero retention (prompts not retained unless you direct retention or the law requires it). Prompt content is not used to train any model. |
| Microsoft Azure AI | Document, image & route intelligence | Extracts data from documents you upload, analyzes images/video frames, and computes routes and pricing — used only by the operations features that need them (e.g. logistics). |
| Google Maps | Mapping | Client-side map display for fleet and location features. Loaded only on sites that enable mapping; receives the coordinates being shown. |
| Twilio / SendGrid | SMS & email (optional) | Used only if you enable SMS or email notifications for your workspace. Disabled by default. |
HIPAA
HIPAA-eligible plan
iqcloud offers a HIPAA-eligible plan for tenants that handle Protected Health Information (PHI). Eligibility requires a signed Business Associate Agreement (BAA) before any PHI flows through the platform. The HIPAA-specific commitments — BAA scope, encryption posture, audit log retention, breach notification SLA, and subprocessor HIPAA-eligibility — are drafted on a dedicated disclosure page.
The HIPAA disclosure is currently in legal review. Do not rely on any of its terms as binding until counsel sign-off; contact us before evaluating iqcloud for a HIPAA workload.
Coordinated disclosure
Reporting a vulnerability
If you believe you have found a security issue, email security@iqcloud.cloud. We acknowledge within one business day and ship a fix on a schedule proportional to severity. We will not pursue legal action against good-faith research that does not exfiltrate customer data or degrade availability.
PGP fingerprint: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000 (placeholder — full key published before public launch)
Last reviewed 2026-06-03. See the SLA →