Designed for K-12
Designed for K-12
K-12 Data Privacy and Security
Trusted by 20+ million educators and families for data privacy and student data protection
Industry-leading data security practices
ParentSquare’s school-home communication platform uses enterprise-grade security protocols to safeguard the confidentiality and integrity of student, parent, and staff information, including meeting top standards for compliance and certification.
- SOC 2 Type 2 certification for ParentSquare security, availability, and confidentiality
- ISO 27001 certification for ParentSquare information security management
- Internal security controls aligned with the NIST Cybersecurity Framework v2.0
- Hosted on Amazon Web Services (AWS) with US-based data storage and processing. AWS meets compliance programs including SOC 1, SOC 2, SOC 3, ISO 27001, PCI DSS Level 1, and NIST 800-53.
- Data encrypted in transit and at rest using AES-256 and transmitted via HTTPS
- Third-party penetration testing to identify and resolve vulnerabilities
- Part of the HackerOne vulnerability disclosure program, which rewards those who report vulnerabilities and help keep sensitive data secure.
K-12 data privacy and compliance
ParentSquare follows strict data governance policies to protect user privacy and comply with education data privacy laws. We work closely with schools and districts to maintain compliance and transparency.
Privacy commitments:
- Certified by iKeepSafe for compliance with FERPA, COPPA, California Student Privacy (including SOPIPA, Ed Code 49073.6, and Ed Code 49073.1), and the California Consumer Privacy Act (CCPA).
- Access controls limit sensitive data to authorized ParentSquare personnel, with mandatory annual privacy training.
- All third-party vendors must meet or exceed our privacy policies, including restrictions on the sale or marketing use of personally identifiable information (PII).
Transparency in security and compliance
Discover how ParentSquare supports security and compliance for schools and districts
