Schools trust EduSuite OS with sensitive student records, parent financials, and personnel details. We deliver complete database isolation, encryption, and audit logs.
Four core architectures working continuously to guard school directories and financial registers.
Every school instance functions as an isolated unit. Student, gradebook, and financial assets live in separate data silos, eliminating accidental cross-exposure.
Session transfers utilize TLS 1.3 encryption. Critical records, database back-ups, and authentication tokens are encrypted at-rest using AES-256 standard protocols.
Assign permissions based on structural roles (e.g. Wardens, Bursars, Teachers, Admissions). Custom scopes protect sensitive screens from unauthorized accounts.
Secure database snapshots are compiled every 6 hours and stored in geographically isolated arrays, supported by weekly restore drills to ensure recovery.
We stand behind strict recovery guidelines and data control standards.
Unlike legacy platforms where all school records mingle in a single database, EduSuite OS isolates every campus. Your student files, tuition statements, and staff accounts live in dedicated logical schemas. A breach in one school cannot expose your 'institution's' records.
Every sensitive action — whether compiling a compliance PDF, changing a bank account routing number, or deleting a student record — triggers a permanent log entry. The system captures IP locations, timestamp parameters, and the actor identification. Logs cannot be modified or cleared by standard users.
EduSuite OS is built to meet regulatory requirements in every country where we operate.
| Region | Regulation | Status | Notes |
|---|---|---|---|
| 🇮🇳 India | DPDP Act (2023) | Ready | Data localization within IN-West/IN-South GCP regions |
| 🇵🇭 Philippines | Data Privacy Act (RA 10173) | Ready | Compliant with NPC registration requirements |
| 🇸🇬 Singapore | PDPA 2012 (Amended 2021) | Ready | Data stored in AP-Southeast GCP region |
| 🇦🇪 UAE / GCC | PDPL Federal Law No. 45/2021 | In Progress | Localization review ongoing for ME-Central region |
| 🌍 Global | FERPA / COPPA (US) | Ready | Student data never sold, shared, or monetized |
| 🌍 Global | GDPR (EU-aligned standards) | Ready | Consent management, data deletion, and DPA on request |
Our commitment to security is ongoing. Here's what we're building toward.
Engaged independent auditors. Evidence collection period began across access control, availability, and confidentiality trust categories.
Gap analysis against ISO/IEC 27001:2022 completed. ISMS documentation and control mapping underway.
Independent Vulnerability Assessment & Penetration Testing engagement signed. Full application and infrastructure scope.
Sanitized penetration test executive summary made available to school clients on request under NDA.
Formal ISO 27001 certification submission to accredited registrar after successful Stage 2 audit.
We employ strictly monitored role-based permissions (RBAC). For example, class teachers can modify grades but cannot read billing routing tables or adjust tuition policies.
We host databases on Google Cloud Platform (GCP) using regional clustering — Indian institutions stay within IN-West/South GCP clusters; Philippine schools use AP-Southeast zones, ensuring data residency compliance.
Yes. Backups are encrypted during compilation using AES-256 encryption and stored in isolated Cloud Storage buckets with versioning enabled. Point-in-time recovery is available for up to 30 days.
Absolutely. EduSuite OS is built to strict FERPA guidelines regarding educational record ownership and is COPPA-compliant to prevent harvesting information from minors. Student data is never sold or shared.
A read-only log database collects and seals records of critical tasks. System admins can query or export logs but cannot rewrite database logs. All exports are recorded in the primary audit trail.
Yes. We run independent Vulnerability Assessment and Penetration Testing (VAPT) cycles. Sanitized executive summaries are available to schools on request under NDA. See our Security Roadmap above for current status.
EduSuite OS targets 99.9% platform availability (< 8.7 hours downtime/year). Scheduled maintenance windows are communicated 48 hours in advance via status emails. Live status is available at our platform status page.
Access our SOC 2 guidelines, network layouts, and privacy contracts.