Skip to content
Try QuaerisAI

QuaerisAI, Inc. Data Processing Addendum

(Incorporated by Reference)

This Data Processing Addendum (“DPA”), sets forth the rights and obligations regarding the processing of Customer data. By executing an Order Form or subscribing to the Platform, you agree to be bound by the DPA without the need for a separate signature. 

These Data Protection Addendum along with Terms and Conditions (“Terms”) govern your access to and use of the QuaerisAI Platform (“Platform”), including any associated services, software, and documentation, provided by QuaerisAI, Inc. (“QuaerisAI,” “Provider,” or “QAI”). By accessing or using the Platform, you agree to be bound by these Terms. 

 

 

  1. Definitions
    • Data Controller: Entity determining purposes and means of Personal Data processing. 
    • Data Processor: QuaerisAI, Inc., processing Personal Data on behalf of the Data Controller. 
    • Level-Zero Data: Raw data residing in the Customer’s systems that is not replicated outside the Customer environment. 
    • Services: Analytics, reporting, and data access services provided by QuaerisAI. 

  1. Data Processing Scope and Encryption
    • QuaerisAI processes Customer data solely to provide the Services. 
    • All queries execute directly within Customer systems; Level-Zero Data is never copied, stored, or moved. 

    • Data interactions are ephemeral and scoped by user permissions. 

    • QuaerisAI protects your data at every stage.

      At Rest: Encryption is handled natively by your database platform (e.g., Transparent Data Encryption in SQL Server, or equivalent), ensuring that files, logs, and backups remain encrypted within your environment.

      In Transit: QuaerisAI supports and recommends TLS-encrypted sessions for all database connections. This ensures all query traffic and results are secured end-to-end over the network.

      Connectivity:

      • Private Networking (preferred): Connection between Quaeris and your database can be made through Azure VNet Peering, keeping traffic between organizations isolated to Azure's private, internal backbone network (which is secured by Microsoft.)
      • Public Networking (common for POVs/pilots): QuaerisAI can also connect over the public internet to databases protected by WAN-facing firewalls. Even here, all traffic is TLS-encrypted and further controlled by your firewall and access rules.

 

  1. Data Sources and Connectivity
    • Supports cloud, on-prem, private cloud, data lakes, cloud data warehouses, ERP, CRM and all transactional systems. 
    • 300+ connectors including SQL, PostgreSQL, Oracle, Snowflake, Azure Synapse, Redshift, Athena, Salesforce, HubSpot, SAP, Workday. 
    • Custom connectors can be developed.
    • Access is via read-only connections, keeping data in the Customer environment. 
    • Query results are transient and permission-scoped. 
    • Role-based access control, Persona-based functionality limits, encryption, audit trails, and granular security at dimension and document levels are applied. 

 

  1. Data Sources and Connectivity
    • Supports cloud, on-prem, private cloud, data lakes, cloud data warehouses, ERP, CRM and all transactional systems. 
    • 300+ connectors including SQL, PostgreSQL, Oracle, Snowflake, Azure Synapse, Redshift, Athena, Salesforce, HubSpot, SAP, Workday. 

  1. Data Storage, Data Ownership, Model Training, and Security
    • QuaerisAI does not store Customer data or use it for training of any AI Models for benefit of other customers.
    • The client retains all rights, title, and interest in Customer Data. QuaerisAI claims no ownership rights to Customer Data and acknowledges it as confidential information.
    • QuaerisAI shall not share, transfer, or provide access to Customer Data to any third party without prior written consent from Customer, except as required by law. Any approved third-party processors must maintain equivalent security standards and sign appropriate data processing agreements.
    • Client reserves the right to audit QuaerisAI's security practices annually, either directly or through a qualified third party, at the client's cost, with reasonable advance notice. 

  1. Multi-Tenant, Risk Mitigation, and API Access
    • Supports enterprise-scale multi-tenant deployments via Dockerized Kubernetes. 
    • Direct query execution mitigates risk of data loss, latency, or replication costs. 
    • Secure API access is available subject to Customer permissions. 

  1. Subprocessors and Audit Rights
    • QuaerisAI may engage subprocessors under equivalent data protection obligations. 
    • Customer may request reasonable audits consistent with confidentiality. 

  1. Data Breach Notification & Liability
    • In the event of any security breach, unauthorized access, or suspected compromise of Client data, QuaerisAI shall notify Client within eight (8) hours of discovery and provide detailed incident reports within 72 hours.
    • QuaerisAI is liable for breaches resulting from its negligent or willful acts; Customer indemnifies QuaerisAI for claims arising from inaccurate or unauthorized instructions.

 

   8. Term, Termination, and Liability

    • Effective for the duration of the Agreement. 
    • Upon termination, all Customer data processed by QuaerisAI will be deleted or rendered inaccessible. 

 

For questions regarding these Terms or the DPA, contact us.

All rights reserved.

Last updated September 4, 2025