Compliance Statement

At CtrlOne, developed and operated by UQuick Technologies India Limited, we are committed to building enterprise software that helps organizations strengthen endpoint security, improve operational governance, and support internationally recognized compliance frameworks. CtrlOne has been designed using security-first and privacy-first engineering principles to help organizations implement administrative, technical, and operational controls required by modern compliance standards. Our platform provides centralized Windows endpoint policy management, audit logging, policy versioning, access controls, tamper resistance, evidence generation, and security monitoring that support customer compliance initiatives. Effective Date: 14 July 2026.

Last updated: July 14, 2026

Important Notice

Unless explicitly stated otherwise, CtrlOne is NOT currently certified under any ISO standard unless an official certification has been successfully completed by an accredited certification body.

Any references to ISO standards on this website refer solely to:

These references must not be interpreted as claims of certification.

  • Control Mapping
  • Security Alignment
  • Best Practices
  • Operational Readiness
  • Compliance Support

Compliance Philosophy

CtrlOne has been engineered around five core principles. These principles guide the design, development, deployment, maintenance, and continuous improvement of the CtrlOne platform.

  • Information Security
  • Privacy Protection
  • Service Reliability
  • Operational Excellence
  • Business Continuity

ISO 9001:2015 — Quality Management System (QMS)

CtrlOne follows quality management principles inspired by ISO 9001:2015 to improve software quality and customer satisfaction. These practices help ensure consistent software delivery and continuous improvement. Areas of alignment include:

  • Software development lifecycle management
  • Product quality reviews
  • Change management
  • Internal testing procedures
  • Customer feedback collection
  • Bug tracking
  • Continuous product improvement
  • Documentation management
  • Version control
  • Corrective actions
  • Preventive actions
  • Risk-based thinking

ISO/IEC 27001:2022 — Information Security Management

CtrlOne incorporates security controls aligned with ISO/IEC 27001:2022 principles for protecting information assets. These capabilities assist organizations in implementing Information Security Management Systems (ISMS). Security capabilities include:

  • Role-Based Access Control (RBAC)
  • Authentication mechanisms
  • Encryption during communication (TLS)
  • Secure configuration management
  • Audit logging
  • Tamper-resistant endpoint agent
  • Policy integrity protection
  • Endpoint security enforcement
  • Configuration management
  • Least privilege administration
  • Change auditing
  • Device management
  • Security event logging
  • Administrative accountability
  • Policy version history
  • Controlled administrative access

ISO/IEC 27701:2019 — Privacy Information Management

CtrlOne supports organizational privacy programs through features that assist in managing personal information responsibly. Organizations remain responsible for determining how they configure CtrlOne to meet their own privacy obligations under applicable laws. Privacy-supporting practices include:

  • Administrative access controls
  • User authorization
  • Audit records
  • Secure authentication
  • Customer-controlled configuration
  • Limited data processing
  • Privacy-aware logging
  • Secure communications
  • Data minimization principles
  • Access accountability
  • Security monitoring

ISO/IEC 20000-1:2018 — IT Service Management

CtrlOne includes operational capabilities that support modern IT Service Management practices. These capabilities may assist organizations implementing IT Service Management frameworks. Supported operational areas include:

  • Centralized administration
  • Endpoint lifecycle management
  • Policy deployment
  • Configuration management
  • Change tracking
  • Incident visibility
  • Asset monitoring
  • Administrative reporting
  • Operational logging
  • Service availability monitoring
  • Scheduled policy deployment
  • Administrative workflows
  • Configuration consistency

ISO 22301:2019 — Business Continuity Management

CtrlOne incorporates resilience-oriented capabilities intended to support business continuity planning. These features assist organizations in maintaining operational consistency during disruptions. Examples include:

  • Centralized policy management
  • Offline policy enforcement
  • Tamper-resistant protection
  • Endpoint recovery capabilities
  • Administrative backups
  • Secure configuration management
  • Policy synchronization
  • Controlled software updates
  • Configuration integrity
  • Disaster recovery support
  • Operational continuity

Security Controls Supporting Compliance

CtrlOne includes numerous enterprise security capabilities, including:

  • Centralized Endpoint Policy Management
  • Windows Restriction Management
  • USB Device Control
  • Browser Security Policies
  • Application Control
  • Registry Protection
  • Group Policy Integration
  • Audit Logging
  • Administrative Reporting
  • Endpoint Monitoring
  • Policy Versioning
  • Change Tracking
  • Device Inventory
  • Asset Management
  • BitLocker Monitoring
  • Scheduled Policy Enforcement
  • Tamper Protection
  • Endpoint Isolation
  • Remote Administration
  • Compliance Evidence Export
  • Administrative Alerts
  • Secure Communications
  • Multi-tenant Administration
  • Role-Based Permissions
  • Policy Rollback
  • Configuration Integrity Protection
  • Offline Enforcement
  • Secure Agent Architecture

Compliance Evidence

CtrlOne provides administrative records that may assist customers during internal or external audits, including:

These records are intended to support customer audit processes and are not themselves evidence of certification.

  • Policy history
  • Administrative actions
  • Audit logs
  • Endpoint status
  • Device inventory
  • Configuration reports
  • Compliance reports
  • Activity logs
  • Policy versions
  • Security events
  • Administrative exports

Customer Responsibilities

Customers are responsible for:

Compliance cannot be achieved through software alone and requires appropriate organizational governance.

  • Configuring CtrlOne appropriately
  • Establishing internal security policies
  • Managing user accounts
  • Maintaining endpoint security
  • Reviewing audit logs
  • Protecting administrator credentials
  • Implementing organizational compliance procedures
  • Meeting applicable legal and regulatory requirements

Continuous Improvement

UQuick Technologies India Limited continuously reviews and improves CtrlOne by:

  • Enhancing security features
  • Improving privacy controls
  • Expanding audit capabilities
  • Strengthening administrative controls
  • Improving product reliability
  • Monitoring emerging cybersecurity risks
  • Addressing customer feedback
  • Updating security practices
  • Releasing regular software updates

Future Compliance Roadmap

CtrlOne intends to continuously evaluate alignment with internationally recognized standards, including:

Future certification initiatives will be announced only after successful completion by accredited certification bodies.

  • ISO 9001:2015
  • ISO/IEC 27001:2022
  • ISO/IEC 27701:2019
  • ISO/IEC 20000-1:2018
  • ISO 22301:2019
  • SOC 2
  • CIS Controls
  • NIST Cybersecurity Framework
  • CERT-In guidance
  • India's Digital Personal Data Protection Act, 2023 (DPDP Act)

Disclaimer

This Compliance Statement is provided for informational purposes only.

References to ISO standards indicate that CtrlOne has been designed with controls and operational practices intended to support those frameworks. They do not represent certification, accreditation, endorsement, or approval unless explicitly stated.

Organizations should perform their own compliance assessments and consult qualified auditors or legal professionals when determining regulatory obligations.

Contact

UQuick Technologies India Limited — CtrlOne Product Team

  • Website: https://ctrlone.online
  • Email: support@ctrlone.online