Title: Data, Security and Privacy Matters
Fueled by a decade of research and development, Proctortrack stands at the forefront of innovation, leading the industry to provide unparalleled proctoring solutions. Below is a short list of certifications and completed compliances from around the world that Proctortrack is committed to, delivering optimal exam experiences with the highest protocols for data, security, and privacy.
USA
SOC 2 Type 2: SOC 2 Type 2 is a framework for managing and securing sensitive information and evaluating a service provider’s systems and controls over time.
Why it matters: SOC 2 Type 2 matters for businesses relying on service providers. It signifies that the provider has robust controls in place, assuring clients of the security and integrity of their data.
ISO/IEC 27001: ISO/IEC 27001 is an international standard for information security management systems, offering a systematic approach to protecting sensitive information.
Why it matters: ISO/IEC 27001 matters for organizations prioritizing information security. It establishes a framework to prevent data breaches, ensuring information confidentiality, integrity, and availability.
ADA (Americans with Disabilities Act): ADA prohibits discrimination against individuals with disabilities and, in the context of technology, requires digital content accessibility.
Why it matters: ADA matters for inclusivity in the digital realm. Ensuring accessibility means providing equal opportunities for everyone, regardless of abilities, fostering a more inclusive online environment.
FERPA (Family Educational Rights and Privacy Act): FERPA is a U.S. law safeguarding the privacy of student education records and granting parents certain rights regarding their children’s educational information.
Why it matters: FERPA matters for student privacy. It establishes guidelines to protect sensitive educational data, create a secure learning environment, and preserve the confidentiality of student records.
SOPIPA (Student Online Personal Information Protection Act): SOPIPA is a California law regulating the use of student data by educational technology companies, protecting the privacy and security of students’ online information.
Why it matters: SOPIPA matters for the safety of students online. It sets boundaries on how ed tech companies handle student data, preventing its misuse for commercial purposes and ensuring a secure online learning environment.
CANADA
FIPPA (Freedom of Information and Protection of Privacy Act): FIPPA is a Canadian law governing the collection, use, and disclosure of personal information by public bodies, striking a balance between public information access and individual privacy.
Why it matters: FIPPA matters for transparent government operations. It instills confidence by ensuring responsible handling of personal information within public organizations, promoting accountability and trust.
PIPEDA (Personal Information Protection and Electronic Documents Act): The legal framework under this act in Canada governs private organizations’ collection, use, and disclosure of personal information.
Why it Matters: PIPEDA compliance matters as it safeguards an individual’s privacy, fostering trust in digital transactions. This act ensures responsible data management, respecting individual rights in an increasingly data-centric landscape.
EUROPE
GDPR (General Data Protection Regulation): GDPR is a comprehensive data protection regulation implemented in the European Union, outlining rules and guidelines for the collection, processing, and storage of personal data.
Why it matters: GDPR is crucial for safeguarding individuals’ privacy rights. It holds organizations accountable for responsible data handling, ensuring transparency, and empowering individuals with control over their personal information.
BBB National Programs’ Data Privacy Framework: This framework provides comprehensive solutions to safeguard personal information, ensuring businesses adhere to ethical data practices and maintain consumer trust.
Why it Matters: In an era of escalating data breaches, BBB’s services are pivotal, establishing a robust framework that shields individuals’ privacy, fostering transparency, and upholding the integrity of digital interactions.
Privacy Shield: Privacy Shield was a framework facilitating the transfer of personal data between the EU and the United States, ensuring that U.S. companies met EU data protection standards.
Why it matters: Privacy Shield mattered for international data flows. Its invalidation underscored the importance of legal mechanisms for securing cross-border data transfers, impacting global business operations.
GLOBAL
2048 Bit-Encryption: 2048-bit encryption is a cryptographic method that uses a key length of 2048 bits to secure data during transmission (in transit) and when stored (at rest).
Why it matters: This encryption standard matters for data security. It significantly enhances the protection of information, making it exceptionally challenging for unauthorized parties to intercept or access sensitive data, thereby ensuring the confidentiality and integrity of data.
Google Cloud: Google Cloud is a suite of cloud computing services provided by Google, offering infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS) products.
Why it matters: Google Cloud does matter for businesses seeking scalable and reliable cloud solutions. It provides a robust and flexible infrastructure, enabling organizations to leverage advanced technologies, enhance data security, and scale their operations efficiently.
SPADE Dashboard: The SPADE (Student Privacy and Data Expunge) Dashboard is a data privacy and transparency tool designed to provide data information and disclosures for Proctortrack test-takers. It also provides information on all the test sessions attempted using Proctortrack, the volume of data collected, and the data deletion date.
Why it Matters: The SPADE Dashboard enhances student transparency throughout ID verification, remote proctoring, and the post-examination data lifecycle. Users can track the storage of their ID verification, approval, and processing to maintain test integrity. SPADE Dashboard allows users to monitor when their data is expunged from servers.
