Catalog News For Brands About Contact 🌐 AR
Join
Enterprise Security

Security built for construction procurement data.

Qimta protects BOQs, project data, account data, and catalog workflows with enterprise-grade controls. We ensure your proprietary pricing and material data remains confidential.

Talk to Security Team Download Whitepaper
SEC-VER-04
Data Encryption Protocol
In-Transit TLS 1.3 / AES-256
At-Rest FIPS 140-2 Compliant
Key Mgmt AWS KMS / HSM
"All Bill of Quantities (BOQ) uploads are automatically hashed and isolated at the project tenant level."

Core Security Pillars

Every layer of the Qimta infrastructure is hardened to prevent unauthorized access and ensure total data sovereignty.

Project-level data isolation

Logical separation of data between accounts ensures your project details never leak across organization boundaries.

Account protection

Multi-factor authentication (MFA) and Single Sign-On (SSO) integration for enterprise identity management.

Secure BOQ handling

Encrypted processing pipelines for Bill of Quantities, ensuring sensitive line-item pricing remains confidential.

Access control

Granular Role-Based Access Control (RBAC) allows you to define who can view, edit, or approve procurement data.

Encryption

End-to-end encryption for all sensitive files. Data is encrypted at rest using AES-256 and in transit via TLS 1.3.

Monitoring

24/7 security operations center (SOC) monitoring with real-time threat detection and incident response protocols.

Regulatory Compliance

We adhere to the highest international data protection standards to support global operations.

PDPL-compliant

Fully aligned with Saudi Arabia's Personal Data Protection Law (PDPL).

GDPR-aligned

Strict adherence to European Union data privacy and portability requirements.

DPA Available

Data Processing Agreements (DPA) available for enterprise legal requirements.

Secure Data Processing Lifecycle

How Qimta handles your BOQ data from upload to retrieval.

Step 01
BOQ upload
Encrypted TLS 1.3 Channel
Step 02
secure processing
Isolated Sandbox Environment
Step 03
RAG retrieval
Private Vector Embeddings
Step 04
priced response
Verified Catalog Matching
Complete
account history
Immutable Audit Trail

Security FAQ

Specific technical answers for your compliance teams.

Yes. Every BOQ uploaded is encrypted and processed within a single-tenant logical environment. Qimta uses industrial-strength hashing to ensure that your specific pricing remains private.
Yes. Each account operates in a fully isolated data context. There is no cross-tenant data sharing at any layer of the infrastructure.
Yes. We offer Data Processing Agreements (DPAs) for enterprise clients that require formal contractual data protection guarantees.
We support MFA, SSO integrations, and session-based access tokens. All authentication events are logged in the immutable audit trail.
BOQ files are encrypted in transit via TLS 1.3 and at rest via AES-256. Each file is processed in an isolated sandbox and is never shared with other tenants.

Talk to our team about security.

Need to complete a security questionnaire or review our compliance reports? Our security specialists are ready to help.

Request Security Pack