Security & privacy

Your school's data, locked down.

Children's data. We take it seriously. Here is exactly what we do, in plain language.

How we protect it

System-level security

The security comes from how the platform is built — not where the wires happen to be. Here is what protects your school's data on every request, every day.



Encryption everywhere

TLS 1.3 on every connection. AES-256 on the database and on every backup. Nothing about a child travels or rests in plain text.


Role-based access

Teachers see their classes. Parents see their children. Headmasters see their school. Nobody — including us — sees more than they should.


Tamper-evident audit

Every login, every edit, every export is logged with a timestamp and a signature. Exportable for MoE inspections.



Where it runs

Enterprise-grade hosting

We host on tier-1 cloud infrastructure — the same standard the world's largest schools and hospitals use.



SOC 2 + ISO 27001 compliant

Hosted in audited datacenters with independent third-party security certification. Physical access controls, network segmentation, 24/7 monitoring — handled by the host, not by us.


Encrypted nightly backups

Backups every 24 hours, 30-day restore window. Snapshot restore is tested every quarter. If a school ever needs to roll back, we can.



Who can see what



Per-role access

Headmaster, teacher, parent, student — each role sees only what it should.


Per-school silo

Your school cannot see another school’s data. Ever.


Audit log

Every administrative action recorded. Exportable for inspection.



Consent

Parents see a clear, plain-Tetum consent record. They can request data export or deletion at any time, in line with GDPR-style norms.

A permission slip with a signature box and a phone showing a consent toggle
The basics

What we do, day in day out



Encrypted everywhere

TLS 1.3 on every connection. AES-256 on every database. Nothing about a child travels or rests in plain text.


Nightly backups

Encrypted backups every night, retained 30 days. Snapshot restore tested every quarter.


Per-role permissions

A class teacher can’t see another class. A bursar can’t see grades. A parent only sees their own children.


Tamper-evident audit

Every administrative action signed and timestamped. Audit log is exportable for school inspection.


Minimal data

We collect only what a school needs to operate. No advertising trackers, no third-party SDKs.


Right to delete

Parents can ask their school to delete their child’s record at any time. The school can also delete the whole school’s account themselves.



If something goes wrong

Incident response

In the unlikely event of a security incident, we follow a published playbook. Within 24 hours we identify and contain. Within 72 hours we notify affected schools and any regulator we're required to inform. We publish a post-incident report once the incident is closed.

Questions about a specific clause?

Our compliance team will answer in plain language.

Contact us Read our FAQ