Security & Privacy
Your school dataprotected at all times
noorschool integrates security best practices to ensure the protection and confidentiality of your institution's data.
Multi-Tenant Architecture
Complete data isolation
Each institution has its own dedicated database, ensuring physical and complete separation of data between schools.
- Each school has its own dedicated database
- Physical and complete separation of data between schools
- No shared resources between tenants
École A
Dedicated database
Isolated
École B
Dedicated database
Isolated
École C
Dedicated database
Isolated
Protections
Multi-layered
TLS 1.2+ / HTTPS
All communications are encrypted in transit with minimum TLS 1.2.
Encryption at Rest
Stored data is encrypted with AES-256 standards.
PCI DSS Compliance
Payments are handled by Stripe, certified PCI DSS Level 1.
Access Control (RBAC)
16 permission areas with customizable roles for granular access.
Abuse Protection
Rate limiting and protection against brute force attacks.
Input Validation
Strict validation of all user inputs to prevent injections.
Privacy
Respect for
Full GDPR compliance
Data hosted in Europe (Azure France)
No data sold to third parties
Transparent data retention policy
Explicit consent for data collection
Notifications on policy changes
Your rights
Right of Access
Right to Erasure
Right to Rectification
Right to Object
Security & Privacy
Questions about security?
Our team is available to answer all your questions about noorschool's security and privacy.