Don’t let security concerns get in the way of important connections
Students need to know their rights are being protected for each means of communication, especially in regard to the importance of FERPA compliance. We are specialists in higher education technology, ConexED takes security and privacy very seriously. Account provisioning, authentication, FERPA compliance, and data protection are fundamental to a Student Engagement platform and Academic Communication System.
ConexED’s higher overview of our security and protected FERPA environment.
ConexED supports automated account provisioning via LDAP and manual user provisioning typically via flat files. As ConexED has done with other clients using PeopleSoft, they will work with a school’s team members to establish account provisioning.
ConexED integrates as a Single Sign On (SS0) via Shibboleth/SAML2 or Central Authentication System (CAS). ConexED also uses our Canvas LTI as an open-auth system to authenticate user accounts.
ConexED allows for simple authentication for non-university users (e.g. prospective students, members of the community who use library services) via social media credentials (Facebook, LinkedIn, Google) or by registering for an account with ConexED.
ConexED takes student information protection very seriously. No one will have access to, nor will any information be disclosed from, a student educational record without the written consent of the student. The only exceptions: “school official with legitimate educational interests,” to authorized representatives of the federal and state governments for audit and evaluation of federal and state supported programs, or other provisions outlined by the FERPA document.
ConexED encrypts and secures all files hosted on Amazon Web Services’ (AWS) S3 Service. All ConexED server certificates are signed by a recognized Certificate authority (DigiCert) and use 256-bit SSL encryption for all web communication. All communication amongst the database, application, and authentication servers is also conducted via secure connections.
All of ConexED products are hosted and provided via the Amazon Web Services platform. No data hosted within the United States ever crosses international borders. At no time are international and national data co-mingled.
Meeting archive data (videos, audio and chat text) are stored as encrypted files on Amazon’s S3 servers using 256-bit Advanced Encryption Standard (AES-256). All meeting archive data is created and transferred to the S3 servers using SSL within a secure Virtual Private Cloud within the Amazon cloud. All web services, REST APIs and database applications are hosted via HTTPS. ConexED SSL configuration has an A rating from Qualy SSL Labs.
User data is stored on Amazon’s RDS (Relational Database Service). Connections to the RDS from our web app are over SSL and are on a private subnet. Remote connections to the DB outside of the VPC are impossible without access to the bastion server via SSL and a private key. Only ConexED’s CTO (Michael Gorham) has access to said private key which is rotated on a monthly basis. The bastion server is fire-walled with only TCP port 22 open which is normally turned off as connections directly to the DB are rarely needed.
In the event of a breach or leak of data, ConexED will inform the designated contact personnel within 3 hours. Within 24 hours of becoming aware of a report or incident, all initial contacts will be treated with the maximum possible privacy; specific information on any leak of identity theft risks will be reported to the school. Consistent with ConexED’s obligation to redress violations, every effort will be made to maintain the privacy of those initiating a report of a breach or leak of data.
Consequences for violating FERPA can include suspension, termination, criminal prosecution, and the loss of Federal funding to the institution as a whole. — U.S. Department of Education
Give students with disabilities the same access as other students with assistive technology. With features like screen reader compatibility, chat meetings, editable real-time closed captioning, keyboard shortcuts, and text-to-speech, students of all abilities can participate in education.
Get a free demo and request more information.
Video Meetings and Virtual Classrooms
ConexED’s browser-based video meetings and classrooms offer interactive and accessibility features so that every student has equal access.
Appointment Scheduling and Event Registration
Convenient online scheduling for all student services and instructional office appointments as well as large event scheduling.
Case Management System
ConexED offers a high-touch platform that is specifically built for targeted outreach, intake and assessment, and developing a student success plan that is easy to navigate and customize.
Calendar, SIS, and LMS API Integrations
ConexED’s multi-dimensional API seamlessly integrates with your school’s Student Information System, Learning Management System, and Calendar systems.
Instant Chat Messaging System
Each chat session can be recorded as an appointment with a reason code, be passed off to another advisor, or be used to send students to the virtual lobby.
Student Analytics and Reporting
ConexED software tracks important institutional data while relieving your IT team of the need to support multiple systems across campus.
Privacy, Compliance, and Accessibility
All communication within ConexED is conducted using secure connections. ConexED complies to all FERPA and HIPAA regulations, and is ADA and WCAG 2.1 conformant.