Trust & Security
Will IQ is built for people entrusting us with their most sensitive personal information. This page summarizes the controls currently in place. It is maintained by Saber IQ as the operator of Will IQ and is not a third-party certification.
Platform overview
Will IQ runs on managed cloud infrastructure with isolated tenants, role-based access, and continuous monitoring. All connections are encrypted in transit using TLS.
Data protection
- Encryption in transit: TLS 1.2+ on every request.
- Encryption at rest: database, storage, and backups are encrypted at rest by our cloud provider.
- Application-layer encryption: sensitive legacy messages are additionally encrypted before storage with per-recipient keys.
- Row-level isolation: every record is scoped to its owner; cross-user access is blocked at the database layer.
Identity & access
- Email + password and Google sign-in. Optional multi-factor authentication can be enabled in account settings.
- Sessions are bearer-token based, scoped to the signed-in user, and re-validated on every privileged action.
Auditability
Sensitive actions (legacy access, AI usage, vault releases) are recorded in append-only audit logs that users cannot modify.
Backups & disaster recovery
The database is backed up automatically by our cloud provider with point-in-time recovery. We test restoration procedures regularly.
Responsible disclosure
If you believe you have found a security issue, please email info@saberiq.net with details. Please do not publicly disclose until we have had a chance to respond.
Your controls
Export or permanently delete your data any time via the Your Data page.
Questions about this document? Contact info@saberiq.net.
Saber IQ · Galveston, TX, USA
This page is maintained by Saber IQ as the operator of Will IQ. It is not a substitute for legal advice.