Knowledge Technology Solutions, Inc., d.b.a. Quester®, an Iowa corporation (“Knowledge Technology Solutions,”, “Quester”, “we,” or “us”) is committed to protecting our clients’ and partners’ data with the highest standards and integrity. For a complete detailed white paper of our security systems, download our white paper and view our privacy policy.
Comprehensive Information Security Program
Quester values our clients and partners. We take the obligation of protecting the confidentiality, integrity, and availability of the data entrusted to us seriously. We understand and agree that protection of your confidential data is your most important concern when partnering with us. To fulfill our commitment to protecting your confidential data, Quester has implemented and maintains a comprehensive Information Security Program that utilizes the framework NIST SP 800-53.
General Data Protection Regulation (GDPR)
Quester is committed to our clients’ and partners’ privacy and has made this a top priority company-wide. This commitment is not limited to the US marketplace and is the reason Quester has prepared accordingly for the General Data Protection Regulation (GDPR). Quester is EU-US Privacy Shield and SWISS-US Privacy Shield certified and complies with the principals of the General Data Protection Regulation (GDPR).
Vendor Management Program
Quester has a Vendor Management Program to identify risks associated with 3rd party vendor services. This vendor management program consists of a review of any independent audits or penetration testing the 3rd party has undergone. Should the audit criteria be considered inadequate or the results of the testing present control gaps, the 3rd party vendor will be provided a security risk assessment questionnaire to complete. The answers will then be reviewed by the Quester security team to determine if additional vetting is required before accepting the vendor. All vendors at a minimum are SOC 2 certified.
Respondent Confidentiality and Participation
Quester understands the importance of consumers and respondents when performing market research. We respect respondents’ privacy and hold their data to the same high standards as our clients and partners. Respondent data is anonymous whenever possible and is not reported individually, but in the aggregate. Respondent participation is completely voluntary, and consent is always required to collect your data. Quester is a member of the Insights Association and upholds their Best Practices when it comes to market research.
For additional information, please see our detailed white paper or contact us at security@quester.com.