Privacy Policy

QuadScale ("QuadScale," "we," "us," or "our") provides a WireGuard-based Zero Trust Network Access platform that enables secure connectivity between devices, servers, Kubernetes clusters, and cloud environments. This policy applies to our website, cloud-hosted control plane, client agents, APIs, and support channels.

If you have questions about this policy, contact us at privacy@quadscale.io.

We collect information necessary to operate a secure networking platform, including:

• Account and identity data: name, email address, organization name, role, authentication identifiers, SSO provider metadata, and billing contact details.
• Device and endpoint data: device hostname, operating system, agent version, public IP address, assigned mesh IP, device keys, posture check results, and enrollment status.
• Network and connectivity metadata: peer connection events, relay usage, NAT traversal outcomes, advertised routes, ACL evaluation results, DNS configuration, and audit log entries related to network access.
• Configuration data: access policies, group memberships, subnet router settings, exit node assignments, API tokens, Terraform state references, and integration settings.
• Support and communications: messages you send to support, diagnostic logs you choose to share, and feedback submitted through our channels.
• Website usage data: IP address, browser type, pages visited, and cookies used for analytics, security, and session management.

QuadScale is designed so that encrypted WireGuard tunnel payload traffic remains end-to-end encrypted. We do not inspect or store the contents of your private network traffic.

We use collected information to:

• Provide, maintain, and improve the QuadScale ZTNA platform and control plane.
• Authenticate users, enforce identity-based access policies, and evaluate device trust.
• Establish peer-to-peer connectivity, coordinate relays, and manage subnet routing and exit nodes.
• Generate audit logs, security alerts, and operational telemetry for administrators.
• Process billing, send service notifications, and respond to support requests.
• Detect abuse, prevent unauthorized access, and protect the integrity of the platform.
• Comply with legal obligations and enforce our Terms and Conditions.

Where applicable under data protection laws such as the GDPR, we process personal data based on:

• Performance of a contract when providing the QuadScale service you requested.
• Legitimate interests in securing our platform, preventing fraud, and improving reliability.
• Compliance with legal obligations.
• Your consent where required, such as for optional marketing communications or non-essential cookies.

We do not sell personal information. We may share information with:

• Infrastructure providers that host our control plane, relay infrastructure, logging systems, and payment processing.
• Identity providers you connect, such as Okta, Microsoft Entra ID, or Google Workspace, strictly for authentication and group synchronization.
• Integration partners you enable, including SIEM, MDM, EDR, and Terraform providers, according to your configuration.
• Professional advisors such as legal, accounting, or security consultants under confidentiality obligations.
• Authorities when required by law or to protect rights, safety, and security.

If your organization uses a self-hosted QuadScale deployment, data sharing is limited to the subprocessors and integrations configured by your administrators.

We retain account and configuration data for as long as your organization maintains an active subscription or account. Connectivity metadata and audit logs are retained according to your plan settings and applicable legal requirements, typically between 30 and 365 days unless a longer retention period is configured by your administrator or required by law.

When you delete a device, user, or organization, we remove or anonymize associated data within a reasonable period, except where retention is necessary for security, billing, dispute resolution, or legal compliance.

QuadScale implements administrative, technical, and organizational measures appropriate for a security-focused networking platform, including encryption in transit, access controls, key management practices, monitoring, and regular security reviews. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Administrators are responsible for configuring strong access policies, rotating credentials, enabling MFA through their identity provider, and restricting API token usage within their environment.

QuadScale may process and store information in countries other than where you are located, including where our cloud infrastructure and relay nodes operate. When we transfer personal data internationally, we use appropriate safeguards such as standard contractual clauses or equivalent mechanisms where required by applicable law.

Depending on your location, you may have rights to access, correct, delete, restrict, or port personal data, and to object to or withdraw consent for certain processing. You may also have the right to lodge a complaint with a supervisory authority.

Organization administrators may manage much of this data directly in the QuadScale control plane. Individual users can contact privacy@quadscale.io to exercise applicable rights. We may need to verify your identity before responding.

Our website and control plane may use cookies and similar technologies for authentication, session management, security, and analytics. You can control non-essential cookies through your browser settings or any cookie preferences we provide.

We may use privacy-conscious analytics to understand product usage and improve reliability. We do not use analytics to inspect encrypted network payload data.

QuadScale is intended for business and professional use. Our services are not directed to children under 16, and we do not knowingly collect personal information from children.

We may update this Privacy Policy from time to time. If we make material changes, we will provide notice through the control plane, by email, or on this page. Continued use of QuadScale after changes become effective constitutes acceptance of the updated policy.