SOC 2 Type II
Edudigital Cloud undergoes annual SOC 2 Type II audits covering security, availability, and confidentiality. Report available to Enterprise customers under NDA.
Trust Center
Enterprise Security. Built for Education Data.
Student records are among the most sensitive data your institution manages. Edudigital Cloud is built to the standards regulators and accreditors expect — SOC 2 Type II, ISO 27001, and FERPA-compliant by architecture.
Certifications & Compliance
The Standards We Meet
Independently audited, continuously monitored, and documented for your compliance and accreditor reviews.
ISO 27001
Our information security management system is ISO 27001 certified. Risk assessments, access controls, and incident response procedures are reviewed and updated annually.
FERPA Compliance
Edudigital is designed as a FERPA-compliant system. Role-based access controls, audit logs, and data disclosure workflows enforce the requirements of 20 U.S.C. § 1232g.
US Data Residency
All student data is stored and processed in US-based data centers. We do not transfer student records to servers outside the United States.
Title IV Security Requirements
Financial aid data handling meets SAIG security requirements and Department of Education data standards. Full COD and NSLDS access controls enforced.
Penetration Testing
Annual third-party penetration tests are conducted against production infrastructure. Critical findings are remediated within 30 days. Summaries available to Enterprise customers.
Security Practices
How We Protect Your Data
Security is not a checkbox. It is an ongoing operational practice built into how we develop, deploy, and maintain Edudigital.
Encryption at Rest and in Transit
All data is encrypted at rest using AES-256 and in transit using TLS 1.2 or higher. Database backups are encrypted and stored in isolated, geo-redundant locations. Encryption keys are managed using industry-standard key management practices.
Role-Based Access Controls
Every user action in Edudigital is governed by role-based permissions. Administrators can define granular roles — from financial aid officer to instructor to registrar — and restrict access to exactly what each role needs. Every data access event is logged.
SSO and Multi-Factor Authentication
Edudigital supports SAML 2.0 and OAuth 2.0 single sign-on integration with Google Workspace, Microsoft Azure AD, and other identity providers. MFA is available for all user accounts and required for administrative roles.
Security Questions? Talk to Our Team.
We work directly with IT directors and compliance officers to answer security questionnaires, share our SOC 2 report, and discuss your institution's specific requirements.