OpenSSL is used for SSL and web traffic. Expressor is an application and not a webserver. Also, Qlik uses Microsoft products that unless you are running Windows version of Apache are not affected according to Microsoft.
Can anyone provide any links on QlikView site or a link to something that says QlikView is "safe" from heartbleed? I need to provide documentation that shows it is - some kind of reference. I have been unable to find anything other than this thread.