How QUORUM collects, uses, and protects information when you use our institutional decision-intelligence platform.
This Privacy Policy describes how QUORUM ("we," "us," or "our") handles personal information and customer data in connection with our software-as-a-service platform, our marketing website, and related services (collectively, the "Service"). It applies to portfolio managers, analysts, compliance staff, and other authorized users of customer organizations that subscribe to QUORUM, as well as visitors to our website.
QUORUM is a business-to-business product. Our customers are professional fund managers and investment firms ("Customers"). When a Customer organization uses QUORUM, the Customer is the controller of its own portfolio, trade, and deliberation data, and QUORUM acts as a processor on its behalf. This policy describes our practices in both capacities.
QUORUM is built for professional and institutional investment workflows. The Service is decision-support infrastructure — not personalized investment advice — and is designed around the documentation, deliberation, and oversight needs of fund managers, family offices, and similar firms.
When you or your organization signs up, we collect names, work email addresses, professional titles, the name of your organization, and authentication credentials (which are stored as salted hashes — never in plaintext).
Through normal use of the Service, you submit information including:
We automatically collect log data (IP address, device and browser information, timestamps, requested actions, and error traces), product analytics (which features are used, in what sequence, and with what latency), and infrastructure metrics needed to operate, secure, and improve the Service.
We collect billing contact details, plan tier, and invoicing history. Payment card details are processed and stored by our payment processor (Stripe) under their own security and compliance program; we do not store full card numbers.
If you contact us by email, request a demo, or correspond with our team, we retain those communications and any information you choose to provide.
We use information to:
We do not use Customer content to train foundation models. Trade theses, portfolio positions, agent deliberations, and IC Reports are not used as training data for any machine learning model — by us, by our AI subprocessors, or by anyone else. See Section 5.
We share information only in the following limited circumstances:
We do not sell personal information. We do not share Customer content with third parties for advertising or marketing purposes.
QUORUM is built on a small set of best-in-class infrastructure providers. Our principal subprocessors include:
A current list of subprocessors is available upon request to enterprise Customers and is provided in advance of any material change.
We retain Customer content for as long as the Customer's account is active and for a reasonable period thereafter to support business continuity, dispute resolution, and legal obligations. IC Reports and deliberation transcripts are designed as long-lived records; Customers who require longer retention to satisfy SEC Rule 204-2 or other regulatory regimes can configure extended retention windows through their workspace settings.
Operational logs are retained for up to 90 days unless a longer period is required for security, audit, or legal purposes. On request, and subject to legal holds, we will delete or return Customer content following termination of a Customer's subscription.
We implement administrative, technical, and physical safeguards designed to protect information against unauthorized access, loss, or alteration, including:
No system is perfectly secure. If you believe your account or data has been compromised, contact us immediately at security@getquorum.ai.
Depending on your jurisdiction, you may have rights under applicable privacy laws — including the right to access, correct, delete, or port personal information about you, and the right to object to or restrict certain processing. Where QUORUM acts as a processor on a Customer's behalf, we will direct rights requests to the relevant Customer and assist them in fulfilling those requests.
You may also unsubscribe from non-essential communications at any time using the unsubscribe link in those messages or by contacting privacy@getquorum.ai. Operational and security communications are not subject to opt-out as long as your account is active.
QUORUM is operated from the United States, and Customer data is currently processed and stored in US-region infrastructure. If you access the Service from outside the United States, you understand that information will be transferred to and processed in the United States. We are evaluating EU-region inference and storage for future market expansion; until that infrastructure is available, the Service is offered to non-US Customers on the understanding that US data-protection law applies to processing.
We may update this Privacy Policy from time to time. When we make material changes, we will notify Customers in advance through the Service or by email and update the "Last updated" date at the top of this page. Continued use of the Service after the effective date of an update constitutes acceptance of the revised policy.
For questions about this Privacy Policy or about how QUORUM handles information, contact: