Checking session
Trust centre
Compliance Centre
QSentia's public policy set for privacy, security, consent, platform conduct, billing, and digital service delivery.
Privacy Policy
Personal-data notice, purposes, sharing, retention, rights, and grievances.
Read policyCookie Policy
Cookie inventory, optional categories, durations, and consent controls.
Read policyData Protection & DPDP
Privacy governance, requests, consent, processors, breaches, and readiness.
Read policyAcceptable Use
Authorized use of models, APIs, data, brokers, automation, and infrastructure.
Read policyBilling & Cancellation
Trials, renewals, cancellations, refunds, invoices, and enterprise terms.
Read policyProgramme status
Controls, evidence, and remaining work
| Area | Status | Position |
|---|---|---|
| Cookie consent | Implemented | Necessary-by-default consent manager with optional categories off until chosen. |
| DPDP readiness | Baseline established | Notice, rights, grievance, retention, processor, child-data, and breach controls documented. |
| ISO control mapping | Design reference | ISO/IEC 27001 and related standards guide controls; QSentia does not claim certification. |
| OAuth and sessions | Implemented | Supabase authentication, protected routes, session visibility, and provider-based sign-in. |
| Production legal review | Required | Entity details, vendor contracts, launch jurisdictions, and final operating procedures require counsel review. |
Policy publication and framework alignment do not replace implementation evidence, legal advice, regulatory registration, or independent certification. QSentia will publish certification scope and auditor details only after a successful accredited audit.