Security at Quip

Trust is our #1 value. We work tirelessly to ensure all customers have the highest level of data protection, privacy, and control.

Contact sales

Secure from day one
Quip is secure out-of-the-box. All of your data is encrypted, auditable, and controlled. We have your business 100% covered from your first document.
Tailor to meet your needs
Our multi-tenant cloud offering and APIs give you the flexibility to tailor the Quip platform to meet your business’ security and compliance needs.
Customize your own private cloud
Deploy to a single-tenant virtual private cluster. You’re in complete control of geography, networking setup, and more. You define all the rules of your cloud.

Trusted by businesses worldwide

Key security features

Encryption

AES 256-bit at rest and TLS 1.2+ in transit

Granular admin controls

User and group management, site configuration & default content settings via Quip Admin Console

External sharing

Ability to monitor content shared externally and to control authorization of external domains

Access management

Automated SCIM provisioning and SAML-based single sign-on (SSO) with Salesforce, Okta, and other providers

Secure mobility

Support for Enterprise Mobility Management (EMM), Mobile Device Management (MDM), and Mobile Application Management (MAM)

Data privacy

Data Loss Prevention (DLP) includes API support for automated content analysis, security classification & quarantining

Data governance

Corporate litigation needs streamlined through legal holds and API support for eDiscovery

Single-tenant cloud

Custom control of geography, regulatory regime, networking setup, and more on the Quip Virtual Private Cloud

Granular permissions

Flexible user-level controls on granular sharing and collaboration permissions

Read our security whitepaper

Quip Shield

Quip’s advanced security features help enhance trust, transparency, compliance, and governance for the most security-conscious organizations.

Enterprise Key Management

Create, manage, and control access to your own encryption keys. Maintain full visibility into all key usage in an unchangeable audit log and respond to potential threats by granularly revoking access to your encrypted data at any time.

Event Monitoring

Real-time event logging readily ingested by Security Information and Event Monitoring (SIEM) systems and Cloud Access Security Brokers (CASB). Monitor for malicious activity, surface threats as soon as possible, and take immediate action.

Antivirus Scanning

Automatically scan all files uploaded to Quip for malicious content. Help guard your business-critical data against known and unknown threats by preventing users from downloading infected files.

Want additional control of your Quip deployment?
Quip Virtual Private Cloud is deployed to an isolated, private cluster on Amazon Web Services (AWS) where employees get all the benefits of the cloud and your IT team has custom controls to manage your data and network.
Learn about Quip VPC
Isolated single-tenant cluster
Dedicated and revocable encryption key
Selectable geography for serving and disaster recovery
Regulatory regime adherence
Custom networking rules, data retention, and session policies
Comprehensive visibility and auditability
Standalone domain

Compliance certifications and regulations

EU/US Privacy Shield
Swiss/US Privacy Shield
Data Privacy Practices
HIPAA
Health Insurance Portability and Accountability Act
Learn More
SOC 2
(Type II)
Trust Services Principles
ISO/IEC 27001
Information Security Management System (ISMS)
Download the certificate
ISO/IEC 27017
Security Controls for the Provision and Use of Cloud Services
Download the certificate
ISO/IEC 27018
Protection of Personally Identifiable Information (PII)
Download the certificate

Security questions or issues?

Talk to one of our product experts to learn more about the Quip Productivity Platform. We’re here to help you understand how Quip’s security measures help modernize your business and drive your teams to get more work done together.