Data Security

The concrete steps we take to keep your financial documents safe.

Last updated: 12 July 2026

We handle sensitive financial documents, so security is built into how we work — not an afterthought. Below is what we actually do.

Encryption

  • All uploads and downloads happen over encrypted HTTPS/TLS connections.
  • Your documents are stored encrypted at rest.
  • Report delivery links are private and time-limited.

Access control

  • Only the analyst assigned to your report can open your files.
  • Accounts are protected with strong authentication.
  • We follow the principle of least privilege — access only where strictly needed.

Data minimisation & deletion

  • We only ask for the documents needed to produce your report.
  • Source documents are permanently deleted 90 days after delivery.
  • You can request earlier deletion at any time.

We never touch your money

QAZER reads statements only to analyse them. We never hold client funds and never have access to your bank accounts or payment credentials. There are no login-sharing or account-linking steps — you send files, we read them.

Confidentiality

  • Every engagement is covered by a Non-Disclosure Agreement (NDA).
  • A GDPR Data Processing Agreement (DPA) is available on request.
  • Staff and contractors are bound by written confidentiality obligations.

If something goes wrong

In the unlikely event of a data breach affecting your rights, we will notify the Estonian Data Protection Inspectorate within 72 hours and inform you without undue delay. Report any security concern to hello@qazer.report.