Security of Customer Data in Qualaroo
At Qualaroo, we treat the issue of security and confidentiality seriously.
The Qualaroo Customer database and the Qualaroo Customer Dashboard Web Application are hosted on the Amazon Web Services (AWS) EC2 cloud. The virtual servers allocated to Qualaroo are physically located in several Availability Zones in the Virginia Region of EC2.
Qualaroo also utilizes the AWS CloudFront (a CDN), which brings content closer to users.
Qualaroo uses a uniform database system to store all customers’ information and reporting data like any modern multi-tenant cloud service provider. Through extensive software testing, we strive to eliminate any possibility of co-mingling customer data. Since each customer has a unique ID in our database, their information is separated from that of others.
Qualaroo uses a one-way hash to encrypt passwords in the user database for user registration and login. The advantage of a one-way hash is that Qualaroo never needs to decrypt passwords created by our users. Qualaroo also provides a robust password reset capability.
All web access to the Qualaroo Customer dashboard is via SSL (HTTPS). This ensures that all the configuration and reporting data will be accessible only by authorized parties.
It was architectured with many best practices, including modularity and isolation, such as design principles.
To provide such valuable tools to our customers as the Satisfaction Score, the Qualaroo cookies have a very long expiration period, allowing data refinement over time.
Thanks in large part to these provisions, thousands of customers rely on Qualaroo for gaining insights about their users in a trustworthy manner and helping them act upon these insights.