All data transmitted between Q4 clients and the Q4 service is done so using strong encryption protocols. Q4 supports the latest recommended secure cipher suites to encrypt all traffic in transit, including the use of TLS 1.2 protocols, AES256 encryption, and SHA256 signatures, whenever supported by the clients. Data at rest in Q4’s production network is encrypted using NIST compliant encryption standards, which applies to all types of data at rest within Q4’s systems. We have implemented appropriate safeguards to protect the creation, storage, retrieval, and destruction of private details such as encryption keys and service account credentials. In addition, we use a combination of storage and caching technologies to ensure customer data is protected from hardware failures and is served quickly, from anywhere in the world, when requested.