Our infrastructure, applications, and data reside exclusively on AmazonWeb Services, the leading global cloud provider. We use AWS ControlTower to enforce AWS-established security and governance best practices, and our serverless architecture lets us take full advantage of AWS’ built-in security while dramatically reducing attack surfaces.
No matter whether we’re loading class schedules from your SIS, publishing events to your school’s calendar, or storing something for later, your data always remains encrypted. Additionally, sensitive information like the credentials used to connect to your school’s SIS are protected with a second layer of encryption provided by AWS Key Management Service, ensuring that access to it is tightly controlled and fully audited.
All customers use their school-managed Google Workspace account to log-in to SchoolCal, so user passwords never touch our infrastructure. We leverage granular permissions for all of our services and ensure all access follows the principle of least privilege.