Don’t let security concerns get in the way of important connections
Students need to know their rights are being protected for each means of communication, especially in regard to the importance of FERPA compliance. We are specialists in higher education technology, ConexED takes security and privacy very seriously. Account provisioning, authentication, FERPA compliance, and data protection are fundamental to a Student Engagement platform and Academic Communication System.
ConexED’s higher overview of our security and protected FERPA environment.
ConexED supports automated account provisioning via LDAP and manual user provisioning typically via flat files. As ConexED has done with other clients using PeopleSoft, they will work with a school’s team members to establish account provisioning.
ConexED integrates as a Single Sign On (SS0) via Shibboleth/SAML2 or Central Authentication System (CAS). ConexED also uses our Canvas LTI as an open-auth system to authenticate user accounts.
ConexED allows for simple authentication for non-university users (e.g. prospective students, members of the community who use library services) via social media credentials (Facebook, LinkedIn, Google) or by registering for an account with ConexED.
ConexED takes student information protection very seriously. No one will have access to, nor will any information be disclosed from, a student educational record without the written consent of the student. The only exceptions: “school official with legitimate educational interests,” to authorized representatives of the federal and state governments for audit and evaluation of federal and state supported programs, or other provisions outlined by the FERPA document.
ConexED encrypts and secures all files hosted on Amazon Web Services’ (AWS) S3 Service. All ConexED server certificates are signed by a recognized Certificate authority (DigiCert) and use 256-bit SSL encryption for all web communication. All communication amongst the database, application, and authentication servers is also conducted via secure connections.
All of ConexED products are hosted and provided via the Amazon Web Services platform. No data hosted within the United States ever crosses international borders. At no time are international and national data co-mingled.
Meeting archive data (videos, audio and chat text) are stored as encrypted files on Amazon’s S3 servers using 256-bit Advanced Encryption Standard (AES-256). All meeting archive data is created and transferred to the S3 servers using SSL within a secure Virtual Private Cloud within the Amazon cloud. All web services, REST APIs and database applications are hosted via HTTPS. ConexED SSL configuration has an A rating from Qualy SSL Labs.
User data is stored on Amazon’s RDS (Relational Database Service). Connections to the RDS from our web app are over SSL and are on a private subnet. Remote connections to the DB outside of the VPC are impossible without access to the bastion server via SSL and a private key. Only ConexED’s CTO (Michael Gorham) has access to said private key which is rotated on a monthly basis. The bastion server is fire-walled with only TCP port 22 open which is normally turned off as connections directly to the DB are rarely needed.
In the event of a breach or leak of data, ConexED will inform the designated contact personnel within 3 hours. Within 24 hours of becoming aware of a report or incident, all initial contacts will be treated with the maximum possible privacy; specific information on any leak of identity theft risks will be reported to the school. Consistent with ConexED’s obligation to redress violations, every effort will be made to maintain the privacy of those initiating a report of a breach or leak of data.
Consequences for violating FERPA can include suspension, termination, criminal prosecution, and the loss of Federal funding to the institution as a whole. — U.S. Department of Education
Give students with disabilities the same access as other students with assistive technology. With features like screen reader compatibility, chat meetings, editable real-time closed captioning, keyboard shortcuts, and text-to-speech, students of all abilities can participate in education.
Get a free demo and request more information.
Video Meetings & Virtual Classrooms
High-quality video and audio, interactive tools, and accessibility features make our browser-based video platform engaging for everyone.
Appointment Scheduling & Event Registration
Entire institutions or individual departments can enable online self-scheduling with a shared calendar for 1:1 video meetings or group events.
Student Success Plans
With tools built for targeted outreach, intake, and assessment, staff and faculty can develop and share individualized student success plans for case management.
Calendar, LMS, & SIS Integrations
Our multi-dimensional API seamlessly integrates with your online calendar, LMS, and SIS to streamline systems, processes, and reporting.
Instant Chat Messaging System
Online chat sessions can be recorded as appointments with reason codes, and passed on to the virtual lobby or to other staff and faculty for follow up.
Data Analytics & Reporting
The platform tracks key institutional data and eliminates the need to buy additional software for viewing and analyzing student and institutional performance.