Take back control of your operations

Alerting and automated enforcement of all your governance, compliance, controls, risk management and fraud detection needs.


A comprehensive solution for all your enterprise fraud and risk management needs.

  • Unlock Valuable Insights from Your Organization's Data

    Transform cross-application data into valuable risk insights with QuartzX's data-driven solution. Gain real-time risk alerting and enhance your organization's risk management capabilities.

  • Protect Your Business with Quartz IQ Fraud Prevention

    Protect your organization from the growing threat of fraud in the age of remote work and decentralization.

  • Stay compliant, Keep your reputation

    Ensure your compliance and reputation despite the increasing regulatory constraints.

  • Rapidly identify and mitigate risks with Quartz IQ advanced technology.

    Stay ahead of risks with real-time identification and early detection.

    • What is the impact of partnering with QuartzX. Customers Testimonials:

    • GRC, Internal control

      Since we started using QuartzIQ, we have been able to significantly reduce residual risks within the organization through the implementation of a large number of automated controls to detect anomalies, suspicious behaviors, and deviations from procedures upstream, thus promoting continuous compliance with our internal policies and various regulations.

    • Automated Post-Trade Controls, Compliance

      The implementation of post-trade automated controls in QuartzIQ has allowed us to improve resilience and punctuality in our investment compliance processes. The systematic processing of real-time alerts across all our compliance requirements and controls enables us to quickly detect anomalies and take immediate action, resulting in increased efficiency while maintaining confidence in our ability to comply with regulatory frameworks.

    • Internal Audit

      QuartzIQ allowed us to significantly reduce the time and costs of our internal audit procedures by systematically processing alerts upstream on the entire population, and automated a considerable number of our testing and control procedures, allowing existing teams to devote more time to higher value-added tasks and to intervene as soon as anomalies are detected.

    • Internal control, T&E

      “QuartzX's solution has enabled us to significantly reduce expenses related to T&E and has more generally brought the necessary peace of mind regarding the conduct of the company resources”

    • GRC, Internal control

      Since we started using QuartzIQ, we have been able to significantly reduce residual risks within the organization through the implementation of a large number of automated controls to detect anomalies, suspicious behaviors, and deviations from procedures upstream, thus promoting continuous compliance with our internal policies and various regulations.

    • Automated Post-Trade Controls, Compliance

      The implementation of post-trade automated controls in QuartzIQ has allowed us to improve resilience and punctuality in our investment compliance processes. The systematic processing of real-time alerts across all our compliance requirements and controls enables us to quickly detect anomalies and take immediate action, resulting in increased efficiency while maintaining confidence in our ability to comply with regulatory frameworks.

    A solution tailored to all areas of your organization.

    General Corporate
    Retail Banking
    Investment Banking
    Healthcare
    Retail
    Energy & Trasportation
    Public sector
    • Purchasing and suppliers
      • Detecting and preventing "Ghost" Suppliers
      • Ensuring Process and Authorization Compliance
      • Preventing Approval Limit Bypass
      • Ensure compliance with the list of approved suppliers
      • Preventing Fraudulent Invoices
      • Automating Supplier Validation
      +
      Travel and expense claims
      • Detection of travel policy violations
      • Validation of the reasonableness of expenses for over 30,000 destinations (hotel nights, meals and transportation)
      • Top spenders per unit/shift by category
      • Detection of employees who have spent more than 180 days abroad
      +
      Payment flows and accounting entries
      • Detection of atypical, irregular, possibly fraudulent transactions
      • Analysis and identification of accounting entries with potential fraudulent activity
      • Implementation of automated reconciliations
      +
      Identity and access management
      • Automating access reconciliation among users, effective access, and data repositories
      • Automated analysis of event logs to identify potentially hazardous application usage
      +
    • Sanctions and embargos
      • Counterparty from an embargoed jurisdiction
      • Ultimate beneficiary at risk
      • Transaction passing through a jurisdiction at risk
      +
      Adherence of loan procedures
      • Compliance with delegation limits on loan granting
      • Compliance with rate policies
      • Completeness of loan information before disbursement
      +
      Internal and external fraud
      • Resale of real estate
      • Illegitimate changes in loan interest rates
      • Loan on dormant accounts
      +
      Anti-money laundering
      • Filtering of payment/transfer flows
      • Suspicious transactions detection
      • Continuous validation of customer files
      +
    • Position monitoring
      • Short positions above market threshold
      • Detection of naked short selling
      • Detection of trading errors Crossing of participation thresholds Cases of short-selling not complying with SEC 105 Net short position on EU sovereign debt Monitoring of index strategies Deviation of portfolio composition from an index Presence of ETFs in index portfolios Liquidity ratio above portfolio threshold Monitoring of restricted entity trading Restricted entity trading transaction Open option on restricted entity
      +
      Regulatory reporting
      • Crossing of ownership thresholds
      • Short-selling not complying with SEC 105
      • Net short position on EU sovereign debt
      +
      Index strategy monitoring
      • Deviation of portfolio composition from an index
      • Presence of ETFs in index portfolios
      • Liquidity ratio above portfolio threshold
      +
      Restricted entity monitoring
      • Transaction on restricted entity
      • Option opened on restricted entity
      +
    • Purchasing and suppliers
      • Detecting and preventing "Ghost" Suppliers
      • Ensuring Process and Authorization Compliance
      • Preventing Approval Limit Bypass
      • Ensure compliance with the list of approved suppliers
      • Preventing Fraudulent Invoices
      • Automating Supplier Validation
      +
      Travel and expense claims
      • Detection of travel policy violations
      • Validation of the reasonableness of expenses for over 30,000 destinations (hotel nights, meals and transportation)
      • Top spenders per unit/shift by category
      • Detection of employees who have spent more than 180 days abroad
      +
      Payment flows and accounting entries
      • Detection of atypical, irregular, possibly fraudulent transactions
      • Analysis and identification of accounting entries with potential fraudulent activity
      • Implementation of automated reconciliations
      +
      Identity and access management
      • Automating access reconciliation among users, effective access, and data repositories
      • Automated analysis of event logs to identify potentially hazardous application usage
      +
    • Purchasing and suppliers
      • Detecting and preventing "Ghost" Suppliers
      • Ensuring Process and Authorization Compliance
      • Preventing Approval Limit Bypass
      • Ensure compliance with the list of approved suppliers
      • Preventing Fraudulent Invoices
      • Automating Supplier Validation
      +
      Travel and expense claims
      • Detection of travel policy violations
      • Validation of the reasonableness of expenses for over 30,000 destinations (hotel nights, meals and transportation)
      • Top spenders per unit/shift by category
      • Detection of employees who have spent more than 180 days abroad
      +
      Payment flows and accounting entries
      • Detection of atypical, irregular, possibly fraudulent transactions
      • Analysis and identification of accounting entries with potential fraudulent activity
      • Implementation of automated reconciliations
      +
      Identity and access management
      • Automating access reconciliation among users, effective access, and data repositories
      • Automated analysis of event logs to identify potentially hazardous application usage
      +
    • Purchasing and suppliers
      • Detecting and preventing "Ghost" Suppliers
      • Ensuring Process and Authorization Compliance
      • Preventing Approval Limit Bypass
      • Ensure compliance with the list of approved suppliers
      • Preventing Fraudulent Invoices
      • Automating Supplier Validation
      +
      Travel and expense claims
      • Detection of travel policy violations
      • Validation of the reasonableness of expenses for over 30,000 destinations (hotel nights, meals and transportation)
      • Top spenders per unit/shift by category
      • Detection of employees who have spent more than 180 days abroad
      +
      Payment flows and accounting entries
      • Detection of atypical, irregular, possibly fraudulent transactions
      • Analysis and identification of accounting entries with potential fraudulent activity
      • Implementation of automated reconciliations
      +
      Identity and access management
      • Automating access reconciliation among users, effective access, and data repositories
      • Automated analysis of event logs to identify potentially hazardous application usage
      +
    • Purchasing and suppliers
      • Detecting and preventing "Ghost" Suppliers
      • Ensuring Process and Authorization Compliance
      • Preventing Approval Limit Bypass
      • Ensure compliance with the list of approved suppliers
      • Preventing Fraudulent Invoices
      • Automating Supplier Validation
      +
      Travel and expense claims
      • Detection of travel policy violations
      • Validation of the reasonableness of expenses for over 30,000 destinations (hotel nights, meals and transportation)
      • Top spenders per unit/shift by category
      • Detection of employees who have spent more than 180 days abroad
      +
      Payment flows and accounting entries
      • Detection of atypical, irregular, possibly fraudulent transactions
      • Analysis and identification of accounting entries with potential fraudulent activity
      • Implementation of automated reconciliations
      +
      Identity and access management
      • Automating access reconciliation among users, effective access, and data repositories
      • Automated analysis of event logs to identify potentially hazardous application usage
      +

    Real-time automated alerting in case of rule or process violation

    1. Customizable workflows for alerts assignment
    2. Remediation of alerts based on severity, SLAs and skills
    3. Determination and refinement of detection thresholds
    4. Visual data explorer with search, native views, and customizable views of alerts and history

    Empower Management With Risk Awareness, Visibility and Control

    1. With Quartz IQ, business managers can create alert rules and remediation plans that can be easily implemented by the teams themselves.
    1. Business teams are directly involved in the processing of alerts, continuous monitoring is no longer solely handled by audit and internal control teams. These teams can therefore concentrate on high-value missions, while being fully aware and responsible for risks in their functional areas.

    Ready to streamline your control processes?

    Speak with an expert. 90-day trial.


    Consolidate Your Data for Risk Informed Decisions

    1. Manage risk in a unified platform
    2. Present trends and insights
    3. Quickly generate quality reports
    4. Display information on your teams and controls

    Easily Monitor Processes With Cross-Application Data

    https://images.prismic.io/quartz-xcom/3d5147e7-0606-45c2-89f4-9ef3850dbbb2_Groupe_Logos+%281%29.png?auto=compress,formathttps://images.prismic.io/quartz-xcom/36b8c1e5-ffbe-45bf-9df0-c72aa7a4770c_Group+558.png?auto=compress,format

    Rigorous data security, while easily implemented solution.

    Read more:
    • INFRASTRUCTURE & SECURITY
      Learn more

      INFRASTRUCTURE & SECURITY

      To protect our clients' data, QuartzX meets the most stringent data security standards and holds a SOC-2 Type 2 certification issued by BDO.

      This certification ensures that QuartzIQ has established and follows strict security protocols and procedures to protect confidential information.

      Our SOC-2 report can be provided to our clients upon request.

      Our QuartzIQ solution was designed and built with the principle of security by design. Throughout its design, we have implemented the best practices in terms of data access segmentation by using Azure AD groups, data segmentation and application roles.

      We also implemented several double validation features, especially when configuring data sources within the controls, guaranteeing a greater security granularity.

      Our architecture allows customized configurations for each client, allowing them to configure themselves the data that is sent to our infrastructure. Thus, in order to benefit from the advantages of QuartzIQ, our customers do not have to open up their entire infrastructure and give us access to all of their data.

      In addition, our architecture is based on a hyper-secure shared tenant, and we also offer the possibility of setting up a dedicated tenant in any country or region to meet the highest security requirements.

      Furthermore, our organization allows our customers to remain RGPD compliant. You retain all your rights to your data and we only use the data sent to us for the purpose of processing your alerts.

    • FLEXIBLE & SIMPLE DATA CONNECTION
      Learn more

      FLEXIBLE & SIMPLE DATA CONNECTION

      With our plug-and-play data connectors, our solution easily connects to all your data. We have a set of connectors for the vast majority of solutions on the market (Splunk, Workday, Azure AD, etc.).

      We also have more generic connectors for integrating any other data source such as files, relational databases, APIs or even your proprietary systems.

      The nature of our connectors allows QuartzIQ to quickly connect to any data source in the Cloud, On Premises, on Linux or Windows OS, and even within other SaaS providers.

      Our solution is also capable of easily cross-referencing data sources from your different applications, thanks to a customizable configuration through a dedicated management interface.

      Each customer can manage both data loading and control rule scripts independently, and cross-reference these data sources to detect potentially hidden fraud patterns.

      QuartzIQ is natively compatible with Snowflake, allowing you to leverage your existing investment in Snowflake by using its data for your alerts, but also to expose the data from our solution for other uses.

      Our check rules engine also includes a mechanism to check the quality of the data before the check is executed. This allows us to ensure that we have sufficient data quality and data freshness to execute the control.

      With our solution, each customer can also customize our application data models and workflows to best suit their needs. Indeed, our flexible solution allows any customer to add new fields to the models and to modify the different workflows in a completely autonomous way.

    • PERFORMANCE & SPEED OF IMPLEMENTATION
      Learn more

      PERFORMANCE & SPEED OF IMPLEMENTATION

      QuartzIQ has a powerful data processing and cross-referencing engine to help you quickly and accurately analyze large volumes of data from a multitude of On Premises, Cloud, Hybrid as well as multi-vendor applications.

      With advanced algorithms and real-time processing, you can gain valuable insights and make data-driven decisions with confidence.

      We provide our customers with a comprehensive rule catalog covering the different areas of the company, allowing to accelerate the implementation of our solution and quickly prove a return on investment.

      This rule catalog, composed of both business descriptions and pre-designed rule templates, will guide you in the implementation of effective controls.

      The control rules can be customized directly in our solution by the business teams. They can easily customize and set detection thresholds to prevent false positives.

      In addition, our solution provides access to a sandbox, allowing teams to easily design their control rules from various data sources.

    Why our clients choose QuartzX?

    Discover the Advantages of Our Platform
    • 01

      Ease of implementation

      QuartzIQ provides effortless connectivity to a variety of data sources, including cloud, on-premises, SQL, API, and more, through its library of pre-built connectors for popular market solutions. In addition, it comes equipped with a pre-established catalog of rules tailored to each specific business and functional area. Among the library of ready-to-use connectors you'll find well-known market solutions such as: Azure, Workday, Splunk, Open Banking, Bloomberg, Dynamics, SAP, ServiceNow, Salesforce, JIRA, eFront and more.
    • 02

      Data security

      To safeguard organizational data, Quartz IQ maintains the highest level of data security and holds a SOC 2 certification. This certification ensures that Quartz IQ has established and adheres to rigorous security protocols and procedures to protect confidential information.
    • 03

      Empower Managers With Visibility, Control And Confidence

      Quartz IQ empowers businesses to create alert rules and remediation plans that can be easily implemented by the teams themselves. With this capability, continuous monitoring is no longer solely the responsibility of audit and internal control teams, allowing them to concentrate on high-value missions.
    • 04

      Clear ROI: Increase Efficiency And Minimize Costs

      Once the business rules are established, QuartzIQ automates the monitoring and resolution processes, enabling business teams to directly oversee compliance and reduce the need for significant financial and human resources.
    • 05

      Manage risk in a unified platform

      Through its ability to connect to all of a company's data sources, QuartzIQ enables businesses to capitalize on their data investments and obtain a comprehensive 360° view of their operations, risks, finances, and strategic objectives.

    FAQs:

    Filter by: :AllOnboardingDataSecurityScope of application
    Onboarding
    +
    How long does it take to set up the solution?
    The solution can be made available to our customers immediately. The duration of the setting up of the control rules within the solution will then depend on the scope of coverage desired by the client. In order to prove the value of our solution, we propose to our clients to carry out a POC (Proof Of Concept) on a sample of business rules, allowing to quickly prove a return on investment of our solution. In addition, we also have a catalog of business rules, allowing to speed up the setting up of controls within our solution.
    Onboarding
    +
    What effort is required from IT teams during the onboarding?
    One of the many advantages of our solution is our plug-and-play connectors for market solutions and our infrastructure requiring little technical configuration. Thus, the setting up of our solution does not generally require a strong involvement of IT teams.
    Data
    +
    What types of data sources can the solution connect to?
    Our solution has a set of plug-and-play connectors for the vast majority of solutions on the market, as well as generic connectors for any type of application. Our solution can therefore be connected to any type of system.
    Data
    +
    How is data integration configured within the solution?
    Each client benefits from a management console that allows users to manage the configuration of the data integration autonomously, as well as perform daily monitoring.
    Security
    +
    Does QuartzX have a SOC-2 type 2 certification or any other certification?
    Yes, we have a SOC-2 type 2 certification issued by BDO.
    Security
    +
    Given the potentially sensitive information in your solution, how do you prevent data leakage?
    Our solution is designed to allow very granular management of data access, including the separation of access by groups and roles, and the implementation of several double-validation mechanisms.
    Security
    +
    How is the data protected from other clients ?
    We offer our clients the use of a shared tenant, but we also dedicated tenants for organizations with higher security requirements.
    Scope of application
    +
    What are the domains covered by the solution?
    Our solution covers a wide range of domains, including retail banking, investment banking and any other business domain. We also have a catalog of business rules to speed up the setting up of controls within our solution.
    Scope of application
    +
    How does our solution integrate with governance, risk and internal audit requirements?
    Our solution is based on the best practices in terms of governance, risk and internal audit. Our solution has a complete audit trail and also ensures that each risk is covered by a control.
    Onboarding
    +
    Which teams are involved during the onboarding?
    Although our solution allows autonomous onboarding for each client, QuartzX provides a team of experts to assist you in setting up your controls and business rules, allowing you to maximize the added value and increase the speed of the setting up of our solution.
    Onboarding
    +
    Will the use of our solution generate additional work for risk management, compliance or security teams?
    On the contrary, the automation of tasks obtained with our solution frees up time for operational teams, allowing them to devote more time to higher value-added analysis tasks and to priority issues. In addition, our solution also promotes the empowerment of business teams by allowing them to directly delegate the processing of alerts. Moreover, it does not require the implementation of large dedicated teams.
    Data
    +
    Can the solution connect to Cloud, On Premises or Hybrid solutions?
    Thanks to our connector toolkit, the solution can connect to any type of system in the Cloud, On Premises or Hybrid, and also allows data cross-referencing between different data from these systems and environments, including data from different vendors and other SaaS solutions.
    Security
    +
    Can sensitive data be used within the controls?
    Yes, our current clients are already using our solution for controls on sensitive data, including controls on trading with restricted entities or controls using employee data. In addition, we have a SOC-2 type 2 certification issued by BDO to ensure strong security of your data.
    Security
    +
    How do you ensure data security in your solution?
    Security is at the heart of our solution, we do not collect any additional data than the data that you send us, and those necessary in your controls.
    Security
    +
    How is authentication managed in the solution, is it possible to set up a Single Sign On (SSO) mechanism?
    We offer the ability to set up SSO authentication with SAML, while also allowing regular account authentication with MFA. We also allow the use of multiple identity providers simultaneously.
    Security
    +
    Where are the data and servers of the solution located?
    We can set up servers in any region or country requested, thus meeting the requirements of each client.
    Scope of application
    +
    Is it possible to customize data models and workflows?
    QuartzX allows clients to customize the configuration of data models and workflows used in our solution. Thus, each client can ensure that the solution is personalized to their processes and needs.

    CERTIFICATION SOC-2

    Our platform is SOC-2 Type II certified