Trust
Security overview
Baseline posture for pilots. Production deployments should complete a formal review and eventual SOC 2 path.
- Role-based access: student, teacher, school admin, org admin.
- Organization-scoped data access for multi-tenant isolation.
- Passwords hashed with bcrypt; session tokens via Auth.js/NextAuth.
- HTTPS required in production; secrets via environment variables.
- First-party analytics only — no ad trackers on student surfaces.
- Labs run client-side; no student PII sent to third-party LLM trainers.
- Audit log for sensitive admin actions (expand before launch).
- Roadmap: Clever/ClassLink SSO, formal penetration test, SOC 2 Type I.