SECURITY

Trust is infrastructure

PCI DSS compliant payments, role-based access control, encrypted data, and a complete audit trail.

PCI DSS Compliance

All payment processing meets PCI DSS standards. Card data never touches Qord servers — Razorpay and Stripe handle all sensitive payment information in their certified environments.

Role-Based Access Control

Three distinct user roles with strict permission boundaries. Managers see only their assigned properties. Guests see only their booking. Owners see everything.

256-bit Encryption

All data in transit is protected with TLS 1.3. Data at rest is encrypted with AES-256. Your property and financial data is secured at every layer.

Manager Isolation

Property managers are architecturally restricted to their assigned properties. There is no UI path or API endpoint that exposes data outside their scope.

Data Residency

Data is stored in region-appropriate infrastructure. For Indian customers, data stays within Indian data center regions for compliance with local regulations.

Audit Trail

Every action in Qord is logged — who did what, when, from where. Complete audit trail for compliance reviews and dispute resolution.

Secure Authentication

Google SSO (recommended), magic link, or password with bcrypt hashing. Session management with secure, httpOnly cookies and automatic expiry.

Activity Monitoring

Suspicious login attempts are flagged. Unusual payment patterns trigger alerts. Real-time monitoring keeps your portfolio secure.

ACCESS CONTROL

Each user sees only what they should

Property Owner

  • View all properties
  • Financial overview & reports
  • Team management
  • Payment configuration
  • Full admin settings

Property Manager

  • Assigned properties only
  • Task queue & guest comms
  • Check-in management
  • Service request handling
  • No financial access

Guest

  • Own booking only
  • Payment & receipts
  • Service requests
  • WiFi & house rules
  • No system access