Visit Us at FETC 2026 • Jan 11-14 • Booth #741
Signup For Official Launch Announcement

Security & Privacy FAQ

At Attendance Genius, we believe that student data privacy is a fundamental right. We have built our platform with a "Security-First" architecture to ensure that every record is protected by industry-leading standards.

Frequently Asked Questions

Find answers to common questions about our security practices and data privacy policies.

1. Is Attendance Genius certified for data privacy?
Yes. Attendance Genius has earned the 1EdTech TrustEd Apps™ Data Privacy Certification. This certification is awarded after a rigorous, independent audit of our privacy policies and technical security practices. It confirms that we meet the highest standards for transparency, data ownership, and security in the K-12 sector.
2. Who owns the student data stored in Attendance Genius?
Your school or district does. Attendance Genius claims no ownership over Student Data or Education Records. We act as a service provider (a "School Official" under FERPA) and only process data to provide the services requested by the institution. You retain the right to access, export, or delete your data at any time.
3. How do you protect data from unauthorized access?
We use a "defense-in-depth" approach to security:

Encryption in Transit: All data sent between your device and our servers is encrypted using industry-standard TLS 1.2 or higher.

Encryption at Rest: All data stored in our databases and file systems is encrypted at the disk level (AES-256).

Application-Level Encryption: As an additional safeguard, sensitive student information is encrypted within our application code before it even reaches the database, ensuring that the data is unreadable to anyone without proper authorization.
4. Do you sell student data or use it for advertising?
No. We have a strict Zero-Ad Policy. We do not sell, rent, or trade student data to third parties. We do not use student data to build behavioral profiles, and we do not allow third-party advertising networks to track students on our platform.
5. Is Attendance Genius FERPA and COPPA compliant?
Yes. Our Privacy Policy and Terms of Service are specifically designed to comply with the Family Educational Rights and Privacy Act (FERPA) and the Children's Online Privacy Protection Act (COPPA). We ensure that data collection is limited only to what is necessary for educational purposes.
6. What happens to our data if we stop using the service?
We respect the "Right to be Forgotten." If a school terminates its service, we initiate a hard-deletion process that permanently purges all associated Student Data and account records from our active systems and backups within 90 days.
7. How do you ensure that only authorized staff can log in?
We provide and recommend Two-Factor Authentication (2FA) for all staff accounts. Additionally, we enforce strong password policies to prevent unauthorized access. Our internal access to production systems is restricted to a limited number of authorized security personnel and requires multi-layer authentication.
8. Where is our data stored?
All Attendance Genius data is stored in secure, SOC 2 compliant data centers located within the United States. We utilize highly resilient infrastructure providers (DigitalOcean and Cloudflare) that are contractually bound to maintain the same high level of privacy and security protection that we promise to our customers.
9. How does Attendance Genius handle data breaches?
While we maintain rigorous preventative measures, we have a formal Incident Response Plan in place. In the event of a confirmed breach involving Personally Identifiable Information (PII), we commit to notifying affected institutions within 24 hours to ensure complete transparency and rapid remediation.