Security Policy

Last updated: December 24, 2025

Mexquant Labs is committed to protecting the security of its platform, systems, and the data entrusted to us by learners, educators, and partners. This Security Policy describes the measures we take to safeguard information and outlines responsibilities shared between Mexquant Labs and users of the platform available at mexquantlabs.com.


1. Scope

This policy applies to all digital systems, infrastructure, applications, and data assets operated or maintained by Mexquant Labs, including the online learning platform, administrative tools, communication channels, and any third-party integrations used to deliver our services.


2. Data Protection Principles

We handle all personal and sensitive data in accordance with the following principles:


3. Infrastructure Security

3.1 Network Security

Our infrastructure is protected through multiple layers of network-level controls, including:

3.2 Server and Hosting Security

3.3 Data Encryption


4. Application Security

4.1 Secure Development Practices

Security is integrated into every stage of our software development lifecycle:

4.2 Authentication and Access Control

4.3 Input Validation and Injection Prevention


5. Access Management

Access to systems and data is governed by a formal access control policy that includes:


6. Incident Response

6.1 Detection and Reporting

We maintain processes for the timely detection and internal reporting of security incidents. All personnel are required to report suspected security events without delay through defined internal channels.

6.2 Response Procedure

Upon identification of a security incident, our response process includes:

6.3 Reporting a Vulnerability

If you believe you have discovered a security vulnerability in our platform, we encourage responsible disclosure. Please contact us directly at help@mexquantlabs.com with a description of the issue. We are committed to acknowledging reports promptly and working to address confirmed vulnerabilities in a timely manner. We request that you refrain from publicly disclosing the vulnerability until we have had a reasonable opportunity to investigate and remediate it.


7. Third-Party Service Providers

Where we engage third-party service providers who process data on our behalf, we apply the following controls:


8. Physical Security

Physical access to facilities and equipment hosting platform systems is controlled through:


9. Business Continuity and Backup


10. Security Awareness and Training

All personnel with access to platform systems or user data receive security awareness training upon joining and on a regular ongoing basis. Training covers recognition of phishing and social engineering attempts, secure handling of data, password hygiene, and obligations under this policy. Personnel in technical roles receive additional training relevant to secure development and system administration.


11. User Responsibilities

Users of the Mexquant Labs platform share responsibility for maintaining the security of their accounts and interactions. Users are expected to:


12. Policy Review and Updates

This Security Policy is reviewed at least annually and following any significant change to our systems, services, or threat landscape. Updates to this policy will be published on this page with a revised effective date. Continued use of the platform following the publication of updates constitutes acceptance of the revised policy.


13. Contact

For questions, concerns, or reports relating to the security of our platform, please contact us: