Skip to content

Security & compliance

DPDP ready Single-tenant Audit · 7-yr

Your school's data is your school's data.

Single-tenant by design. Encrypted in transit and at rest. Audit-trailed end to end. Backed up daily. Exit-ready on day one.

Have a specific compliance framework (CBSE data norms, state board, ISO, SOC) we should align to? We harden the deployment to your spec — different region, custom retention, board-specific consent flows, audit-export formats — as per your request.

Send spec

The layers

Encryption

TLS 1.2+ everywhere, certificates auto-renewed by Let's Encrypt. AES-256 on the database volume and object storage. Backups encrypted before they leave the host.

Authentication

ASP.NET Core Identity with bcrypt-hashed passwords. JWT access tokens with refresh-token rotation. MFA-ready (TOTP) — switch on per role. Rate-limited brute-force protection.

Authorisation

RBAC enforced at the API layer, not just the UI. Every controller action checks role policy. Every query is scoped by SchoolId through an EF Core global filter. See the seven roles →

Tenant isolation

Single-tenant deployment per school. Every record stamped with SchoolId and filtered at the framework level — cross-school data access is impossible by construction, not by policy.

Audit log

Every sensitive write (student records, marks, fees, salary, role assignments) is appended to an immutable audit table. Visible at any time. Retained for 7 years. Soft-deleted records remain queryable from the log.

PII handling

Server-side logs mask names, phone numbers, IDs — by default, not opt-in. Database backups are encrypted before leaving the host. No PII in error traces.

Backups & recovery

Shipping today
  • Daily automated backups of the Postgres database and uploaded files to S3-compatible cold storage.
  • Backup restore drills run quarterly. Procedure documented internally.
  • One-click rollback from the deployment dashboard if a release misbehaves — usually under 60 seconds.
  • Point-in-time recovery available on request for finance-critical records.

Compliance & standards

In progress

WCAG 2.1 AA

Web UI is being audited against WCAG 2.1 AA — colour contrast, keyboard navigation, semantic HTML, focus indicators.

Live

i18n: English + Hindi

UI strings externalised. English ships day-one; Hindi available on request. Additional languages quotable.

Aligned

DPDP Act readiness

Indian Digital Personal Data Protection Act: data residency in ap-south-1 India region available on request. Consent flows + data-subject access ready in Phase 2.

Tailored

Custom compliance

If your board requires a specific framework (CBSE data norms, state board RTI compliance, board-specific report card formats), we build to it.

Where AI sits

Phase 4 · AI
  • Tenant-isolated by default. Your students' data trains nothing outside your school unless you opt in, in writing.
  • Always reviewable. Every AI output is editable, has a "regenerate", and is logged against the user who accepted it — same audit table as everything else.
  • Optional, never mandatory. Run Edu Flick AI on, off, or per-module. Each capability has its own switch.
  • Anomaly watch. AI surfaces unusual access patterns to the Super Admin (e.g. a Teacher reading 200 student profiles in 5 minutes).

Need a deeper security review?

We'll share our architecture deck, threat model, and the exact list of services we run on your tenant — and walk your IT lead through it.

WhatsApp +91 79874 21429 → Email info@codeftech.com