Privacy Policy

We collect information you provide directly and information generated through your use of the platform. This includes:

Account Information

When you register for Quattro, we collect your name, email address, organization name, and any other information you provide during the signup process. If you upgrade to a paid plan, payment information is collected and processed by our third-party payment processor and is not stored on our servers.

Mortgage Documents

Quattro is designed to store and process mortgage-related documents on your behalf. These documents may contain sensitive personal and financial information about your clients, including names, addresses, income information, property details, identification documents, and other mortgage application materials. You retain ownership of all documents you upload.

Usage Data

We automatically collect information about how you interact with the platform, including pages visited, features used, actions taken, timestamps, IP addresses, browser type, and device information. This data is used to operate, maintain, and improve the service.

Communications

If you contact us by email or through the platform, we retain the contents of your messages and our responses in order to provide support and improve our service.

We use the information we collect to:

• Provide, operate, and maintain the Quattro platform
• Process and classify documents using AI features (Quattro Intelligence)
• Enable team collaboration features within your organization
• Send you transactional emails (account confirmations, password resets, billing receipts)
• Send product updates and announcements (you may opt out at any time)
• Respond to support requests and inquiries
• Monitor platform performance and diagnose technical problems
• Detect and prevent fraudulent or unauthorized activity
• Comply with applicable legal obligations and enforce our Terms of Service

We do not sell, rent, or trade your personal information or your clients' information to third parties for marketing purposes.

Quattro is hosted on Google Cloud Platform (GCP), which provides enterprise-grade infrastructure security. Your data is stored in Canadian or North American data centres.

Our security practices include:

• Encryption at rest for all stored data and documents
• Encryption in transit using TLS for all data exchanged between your browser and our servers
• Role-based access controls — your data is isolated by organization and accessible only to members you invite
• Automatic backups to protect against data loss
• A full audit trail that logs every action, upload, and status change within your organization
• Regular security assessments and dependency updates

While we implement and maintain industry-standard security measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security, but we take the protection of sensitive mortgage data seriously and are committed to continuous improvement of our security practices.

When you upload mortgage documents to Quattro, those documents are stored securely in your organization's isolated storage space. Documents are not shared with other organizations or used for any purpose other than providing you with the platform's features.

Quattro Intelligence (QI), our AI document classification feature, processes documents you upload in order to automatically identify and categorize document types (such as income letters, appraisals, identification, bank statements, and similar mortgage materials). This processing occurs within our secure infrastructure. Document content is not used to train or improve AI models without your explicit consent.

You are responsible for ensuring that you have obtained all necessary consents from your clients to store and process their documents using a cloud-based platform, as required by applicable privacy legislation including PIPEDA and applicable provincial privacy laws.

We use a limited number of trusted third-party service providers to operate Quattro. These providers are contractually required to protect your information and may only use it to perform services on our behalf. They include:

• Google Cloud Platform — cloud infrastructure, hosting, storage, and AI processing
• Payment processors — for handling subscription billing (payment card data is not stored by Quattro)
• Email delivery services — for sending transactional and account-related emails
• Analytics providers — for understanding aggregate usage patterns and improving the product

We do not integrate advertising networks or allow third-party advertising trackers on the platform.

We retain your account information and data for as long as your account is active or as needed to provide you with the service. If you close your account, we will retain your data for a reasonable period (typically 30 days) to allow for reactivation, after which it will be deleted from our systems.

We may retain certain records for longer periods where required by law, for the resolution of disputes, or to enforce our agreements. Aggregated, anonymized data that cannot be linked to an individual may be retained indefinitely.

You may request deletion of your data at any time by contacting us at hello@quattro.ca.

Subject to applicable law, you have the following rights regarding your personal information:

• Access — You may request a copy of the personal information we hold about you.
• Correction — You may request that we correct inaccurate or incomplete information.
• Deletion — You may request that we delete your personal information, subject to certain legal exceptions.
• Portability — You may request a machine-readable export of data you have provided to us.
• Withdrawal of consent — Where processing is based on consent, you may withdraw it at any time, which will not affect the lawfulness of prior processing.
• Complaints — You have the right to lodge a complaint with the Office of the Privacy Commissioner of Canada or a relevant provincial privacy authority.

To exercise any of these rights, contact us at hello@quattro.ca. We will respond within 30 days.

Quattro uses cookies and similar technologies to operate the platform and understand how it is used. These include:

• Essential cookies — Required for authentication and to keep you logged in. The platform cannot function without these.
• Preference cookies — Used to remember your settings and preferences within the platform.
• Analytics cookies — Used to collect aggregate information about how visitors use the marketing website, helping us improve the product.

You can control or disable non-essential cookies through your browser settings. Note that disabling cookies may affect the functionality of the Quattro application.

We may update this Privacy Policy from time to time as our platform evolves or as required by law. When we make material changes, we will notify you by email or by displaying a prominent notice in the application before the changes take effect. The "Last updated" date at the top of this page reflects the most recent revision.

Your continued use of Quattro after changes are posted constitutes your acceptance of the revised policy. If you do not agree to the updated policy, you should discontinue use of the service and contact us to close your account.

If you have questions, concerns, or requests related to this Privacy Policy or how we handle your data, please contact us: