Our infrastructure, applications, and data reside exclusively on AmazonWeb Services, the leading global cloud provider. We use AWS ControlTower to enforce AWS-established security and governance best practices, and our serverless architecture lets us take full advantage of AWS’ built-in security while dramatically reducing attack surfaces.
No matter whether we’re loading class schedules from your SIS, publishing events to your school’s calendar, or storing something for later, your data always remains encrypted. Additionally, sensitive information like the credentials used to connect to your school’s SIS are protected with a second layer of encryption provided by AWS Key Management Service, ensuring that access to it is tightly controlled and fully audited.
We use Amazon GuardDuty to continuously monitor for and alert to any potentiation threats, and AWS CloudTrail and AWS Config to ensure a complete audit log of all access to and changes made in our infrastructure.
All customers use their school-managed Google Workspace account to log-in to SchoolCal, so user passwords never touch our infrastructure. We leverage granular permissions for all of our services and ensure all access follows the principle of least privilege.
Have questions about how we work and what you get? We've got all the answers you need.
info@schoolcal.co