Enterprise-grade security for every school.

Encryption everywhere

AES-256 encryption at rest. TLS 1.3 for every connection. No data travels or sits unprotected at any layer of our stack.

Least-privilege access

Every user role has a precise, minimal access scope. Teachers see only their classes. Parents see only their children. No data leaks across accounts.

Full audit logging

Every action including score edits, report approvals, logins, and exports is logged with a timestamp and user identity. Nothing happens without a trace.

Redundant infrastructure

Edunostics runs on geographically distributed cloud infrastructure with automatic failover, load balancing, and a 99.9% uptime target.

Daily backups

Automated backups run every 24 hours across redundant storage locations. Recovery point objectives are measured in hours, not days.

Multi-factor authentication

Administrators can enforce MFA for all staff accounts. Session tokens are short-lived and invalidated on suspicious activity.

Penetration testing

We engage independent security firms to conduct regular penetration tests. Findings are remediated on a strict timeline before deployment.

Vulnerability disclosure

We maintain a responsible disclosure programme. If you discover a security issue, report it to it@edunostics.com for a rapid response.

Engineering practices

Security is baked into how we build.

Our security posture covers infrastructure, engineering practices, code review, and how we respond when something goes wrong.