Security at Quip
Trust is our #1 value. We work tirelessly to ensure all customers have the highest level of data protection, privacy, and control.
Secure from day one
Quip is secure out-of-the-box. All of your data is encrypted, auditable, and controlled. We have your business 100% covered from your first document.
Tailor to meet your needs
Our multi-tenant cloud offering and APIs give you the flexibility to tailor the Quip platform to meet your business’ security and compliance needs.
Customize your own private cloud
Deploy to a single-tenant virtual private cluster. You’re in complete control of geography, networking setup, and more. You define all the rules of your cloud.
Trusted by businesses worldwide
Key security features
Encryption
AES 256-bit at rest and TLS 1.2+ in transit
Granular admin controls
User and group management, site configuration & default content settings via Quip Admin Console
External sharing
Ability to monitor content shared externally and to control authorization of external domains
Access management
Automated SCIM provisioning and SAML-based single sign-on (SSO) with Salesforce, Okta, and other providers
Secure mobility
Support for Enterprise Mobility Management (EMM), Mobile Device Management (MDM), and Mobile Application Management (MAM)
Data privacy
Data Loss Prevention (DLP) includes API support for automated content analysis, security classification & quarantining
Data governance
Corporate litigation needs streamlined through legal holds and API support for eDiscovery
Single-tenant cloud
Custom control of geography, regulatory regime, networking setup, and more on the Quip Virtual Private Cloud
Granular permissions
Flexible user-level controls on granular sharing and collaboration permissions
Quip Shield
Quip’s advanced security features help enhance trust, transparency, compliance, and governance for the most security-conscious organizations.
Enterprise Key Management
Create, manage, and control access to your own encryption keys. Maintain full visibility into all key usage in an unchangeable audit log and respond to potential threats by granularly revoking access to your encrypted data at any time.
Event Monitoring
Real-time event logging readily ingested by Security Information and Event Monitoring (SIEM) systems and Cloud Access Security Brokers (CASB). Monitor for malicious activity, surface threats as soon as possible, and take immediate action.
Antivirus Scanning
Automatically scan all files uploaded to Quip for malicious content. Help guard your business-critical data against known and unknown threats by preventing users from downloading infected files.
Isolated single-tenant cluster
Dedicated and revocable encryption key
Selectable geography for serving and disaster recovery
Regulatory regime adherence
Custom networking rules, data retention, and session policies
Comprehensive visibility and auditability
Standalone domain
Compliance certifications and regulations
EU/US Privacy Shield
Swiss/US Privacy ShieldHIPAA
Health Insurance Portability and Accountability Act
Learn MoreSOC 2
(Type II)Trust Services Principles
ISO/IEC 27001
Information Security Management System (ISMS)
Download the certificateISO/IEC 27017
Security Controls for the Provision and Use of Cloud Services
Download the certificateISO/IEC 27018
Protection of Personally Identifiable Information (PII)
Download the certificate
Quip and the EU General Data Protection Regulation (GDPR)
At Quip, we’re committed to protecting personal data, and we welcome the GDPR as an important step forward in streamlining data protection requirements across the European Union. We see the GDPR as an opportunity for Quip to forge a deeper partnership with our customers by supporting them on their compliance journey.
To learn more about our GDPR compliance, please read our GDPR policy.
Security questions or issues?
Talk to one of our product experts to learn more about the Quip Productivity Platform. We’re here to help you understand how Quip’s security measures help modernize your business and drive your teams to get more work done together.