We protect your data with best-in-class infrastructure, encryption, and access control.
Teachfloor is committed to complying with leading industry standards and data protection regulations.
Role-based access control (RBAC) is enforced across the platform. Only authorized users can access relevant resources based on their assigned roles.
Passwords are stored securely using bcrypt, and we enforce strong password policies across the platform.
We maintain over 99.9% uptime, monitored via third-party services. Our systems are designed for reliability and availability at scale.
Our systems use firewall protections, payload and rate limits to detect and block suspicious activity early. Sensitive actions require repeated authorization to prevent unauthorized behavior.
Our infrastructure runs on secure DigitalOcean servers. All data is stored with enterprise-grade security standards and protected through hardened configurations and access controls.
All traffic to our application is routed through a secure load balancer, which helps mitigate DDoS attacks and distributes requests to ensure high availability and performance under load.
We perform internal security assessments and work with external partners for penetration testing. Vulnerability scans help us identify and address potential risks across our systems.
Daily backups are automatically stored on encrypted, redundant infrastructure. We continuously monitor systems for uptime, anomalies, and performance metrics to ensure operational reliability.
All data is encrypted in transit using TLS 1.2+ and at rest with AES-256 encryption. Sensitive information is safeguarded following industry-recognized security practices.
We maintain an internal incident response process and are equipped with rapid recovery capabilities to restore availability or data access in case of failure.
We maintain policies covering key areas like incident response, access control, vendor risk, and secure development practices. These are reviewed and updated as needed.
Every team member signs a confidentiality agreement during onboarding and receives training on data protection and security awareness.
We use secure authentication for internal tools and apply strict permissions to control infrastructure access.
Payments are handled through Stripe, a certified PCI-DSS Level 1 provider. Teachfloor does not store any credit card information.
Only authorized personnel have access to production systems. Access is role-based, audited, and tightly scoped. Confidentiality agreements and periodic training reinforce secure data handling practices.
%201.svg)
%201.svg)
