Data Security at Possip
At Possip, protecting your information is our top priority. We understand the critical importance of data security in educational environments and are committed to the highest standards of data protection and privacy.
Our Commitment to Data Security
- Confidentiality and Ownership: Your institution owns all data provided to Possip, and we ensure it is used solely to enhance our services and support your goals. Any use of this data for educational and research purposes is conducted in a strictly anonymized and aggregated manner, ensuring no personal identifiers are disclosed.
- Secure Infrastructure: Our platform is cloud-based and supports all major operating systems. We employ robust encryption practices for data at rest and in transit, ensuring that your information is protected against unauthorized access and breaches.
- Compliance with Legal Standards: Possip adheres to rigorous security standards, including FERPA, COPPA, CIPA, and state-specific regulations such as EdLaw2A in New York and SOPPA in Illinois. Our practices are aligned with the NIST CSF v1.1 framework, underscoring our commitment to federal and industry best practices.
- Regular Security Assessments: We conduct scheduled database backups, and our disaster recovery policies ensure that we can restore services within 24 hours of any catastrophic event. Our secure software development lifecycle is based on an Agile improvement philosophy, constantly enhancing our security posture.
- Transparent Communication: In the event of a security breach, we promptly notify affected parties and cooperate fully with law enforcement and educational agencies to resolve the issue and mitigate any impact.
Ensuring Safe and Reliable Data Handling
- Data Integration and Management: We can interface with Student Information Systems (SIS) for efficient data management through our third party, adhering to IMS standards for safe and reliable data exchanges.
- Performance and Reliability: Our service maintains an uptime of 99.9591% annually during business hours, excluding scheduled maintenance. Our Quality Assurance processes ensure a high response rate, significantly outperforming typical industry standards.
- User Access and Control: Institutions have complete access to their data through secure exports and real-time updates in the Possip portal. All data handling processes, from imports to exports, are secured with advanced authentication and encryption protocols.
Accessibility and Scalability
- Digital Accessibility: Our product is WCAG 2.1 AA compliant.
- Platform Capacity: Possip’s current platform is capable of managing 5 Million users, this is based on a forward-looking capacity based on the current operating capacity and load balancing. Capacity and load balancing is undertaken each quarter – a written report can be provided.
Product Lifecycle Management Methodology:
- Possip follows a Secure Software Development Lifecycle (SSDLC) using Agile Product Improvement philosophy.
- Updates are typically pushed to production during off-hours to minimize impact to users.
Your Data, Our Integrity: We provide transparent privacy policies and are happy to answer questions to help you understand how your data is handled. Our team is here to assist with any questions and ensure your experience with Possip is secure, empowering, and aligned with your educational objectives.
Visit our Privacy Policy and Help Center for more detailed information on our data security practices and how we safeguard your information.