Compliance and data protection

Biometrics demand trust. QuietBlade implements privacy by design, mapping controls directly to GDPR, CCPA, Australia’s APPs, and regional frameworks.

Regulatory frameworks

• GDPR lawful bases, DPA addenda, and SCCs where required
• CCPA/CPRA data rights and opt-out mechanisms for applicable data
• Australian Privacy Principles (APP) and APRA-aligned controls
• PDPA principles for consent, purpose limitation, and security

We provide evidence packs and control mappings to support your audits.

Privacy tools

• Consent management: Clear notices, purpose tracking, and revocation handling.
• DSAR workflows: Verified access, correction, erasure, and portability responses with audit trails.
• Data minimization: Template-only storage, configurable retention, and redaction by default.

Certification and audit readiness

• ISO 27001-aligned practices and SOC 2-style evidence
• Independent penetration testing and vulnerability management
• Continuous monitoring, incident response runbooks, and lessons learned

Data transfer and storage

• Regional data residency with customer choice
• Standard contractual clauses and TIAs as applicable
• Retention controls with automatic deletion and proof of execution

Compliance FAQ

Do you store raw biometric images?

No. We store encrypted templates; source signals are not retained beyond processing unless required for explicit, consented purposes.

How fast are DSAR responses?

We target acknowledgment within 3 business days and completion typically within 30 days, depending on scope and jurisdiction.

Who is the point of contact?

Contact our compliance team at [email protected] or call +61 2 7908 4360.