Chinuch App Logo
Chinuch App

Security & Privacy

Your students' data.
Sacred. Protected. Yours.

Industry-standard encryption, strict compliance, and a privacy-first architecture — because student records deserve the same care as the education itself.

How we protect your data

Six layers of security.

אEncryption

Data encryption

All data encrypted in transit with HTTPS/TLS and at rest with AES-256. Access tokens encrypted at the application level.

בAccess

Role-based access

Granular permissions so teachers, parents, and students only see what they need. Multi-school data separation built in.

גStorage

Secure storage

Encrypted backups with point-in-time recovery. Regular security audits. Data stored in SOC 2 Type II certified infrastructure.

דAuth

Authentication

Secure password hashing, session management, and audit logs for every data access. No shortcuts.

הMonitoring

24/7 monitoring

Automated threat detection, DDoS protection, and incident response procedures. We watch so you don’t have to.

וPayments

Secure payments

Stripe-powered (PCI DSS Level 1). Card numbers never touch our servers. Tokenized for recurring billing.

Compliance

We meet the
highest bars.

Student privacy isn't a feature — it's the foundation. Every decision we make starts with the question: does this protect the student?

FERPAStudent educational records
+

We are designated as a School Official with a legitimate educational interest. Role-based access ensures only assigned teachers and authorized admins can view student records. Parents use a separate secure portal. Schools maintain full data ownership with export capabilities.

COPPAChildren under 13
+
GDPREuropean data privacy
+
SOC 2Infrastructure certification
+
ש

Privacy by design

Six principles we
don't compromise on.

01
Minimal collectionWe collect only what is necessary for educational purposes. No behavioral profiling. No ad tracking.
02
School ownershipSchools own 100% of their data. Export in CSV, JSON, or SQL anytime. Delete on request within 10 business days.
03
No selling. Ever.Student data is never sold, rented, or shared with advertisers. Period.
04
Transparent practicesClear privacy policies. Audit logs for every access. Parents can review their child’s data at any time.
05
Parent controlParents can review records, request corrections, and control communication preferences through their portal.
06
Retention limitsActive data retained while the school is active. Archived 60 days after termination, then permanently deleted.

דַּע מַה לְּמַעְלָה מִמְּךָ — עַיִן רוֹאָה וְאֹזֶן שׁוֹמַעַת וְכָל מַעֲשֶׂיךָ בַּסֵּפֶר נִכְתָּבִין

“Know what is above you: a seeing eye, a hearing ear, and all your deeds are recorded in a book”

Pirkei Avot 2:1

We built Chinuch App for Jewish schools. That means we understand the weight of the trust you place in us. Student records, family information, educational progress — we treat every byte as sacred.

256-bit
Encryption
0
Data sold
100%
School-owned

Questions about
security?

Our team can walk through our security practices, share documentation, or address specific concerns.

Contact security teamRead privacy policy →