Viddarpan Help Center

Command Palette

Search for a command to run...

HomeSecurity at Viddarpan

Security at Viddarpan

An overview of our enterprise-grade security architecture, encryption standards, and continuous monitoring practices designed to protect your institution.

3 min readUpdated: 11/20/2023Version: 1.2

Our Commitment to Security

Protecting the privacy and security of school, student, and parent data is our highest priority. Viddarpan employs a defense-in-depth security strategy, utilizing industry best practices across our infrastructure, application, and organizational processes.

Infrastructure Security

Our platform is hosted on world-class cloud infrastructure providers that maintain strict physical and logical security controls.

Data Center Compliance

Our infrastructure providers are compliant with major certifications including:

  • ISO 27001 (Information Security Management)
  • SOC 2 Type II
  • PCI-DSS Level 1

Network Protection

  • Web Application Firewall (WAF): All incoming traffic is routed through our WAF to filter out malicious requests, SQL injection attempts, and cross-site scripting (XSS).
  • DDoS Mitigation: We utilize Cloudflare's advanced DDoS protection to ensure Viddarpan remains available during volumetric attacks.
  • Virtual Private Cloud (VPC): Our databases and application servers reside within isolated, private subnets inaccessible from the public internet.

Data Security & Encryption

Encryption in Transit

All communications between your browser, our mobile apps, and our servers are encrypted using TLS 1.2 or higher. We employ HTTP Strict Transport Security (HSTS) to enforce encrypted connections.

Encryption at Rest

All persistent data, including databases, file storage, and backups, are encrypted at rest using the industry-standard AES-256 encryption algorithm.

Application Security

Authentication & Authorization

  • Secure Passwords: We enforce strict password complexity requirements and utilize robust hashing algorithms (bcrypt/Argon2) for password storage.
  • Session Management: Sessions are securely managed with short-lived access tokens and secure, HttpOnly cookies.
  • Role-Based Access Control (RBAC): Access to data within the platform is strictly governed by roles. Teachers, students, parents, and administrators have isolated views tailored precisely to their permissions.

Vulnerability Management

  • Static Application Security Testing (SAST): All code changes are automatically scanned for vulnerabilities before being deployed.
  • Dependency Scanning: We continuously monitor third-party libraries and frameworks for known Common Vulnerabilities and Exposures (CVEs) and patch them immediately.
  • Penetration Testing: We engage independent security firms annually to perform comprehensive penetration testing against our web and mobile applications.

Operational Security

Access Controls

Access to Viddarpan's production environments is strictly limited to authorized engineering personnel. Access requires Multi-Factor Authentication (MFA), happens over secure VPNs, and is comprehensively logged.

Incident Response

Viddarpan maintains a formalized Incident Response Plan. In the event of a security incident, our dedicated security team is available 24/7 to contain, investigate, and remediate the issue, followed by transparent communication to affected schools.

Reporting a Vulnerability

If you are a security researcher and believe you have found a vulnerability in Viddarpan, please review our Vulnerability Reporting guidelines and contact our security team immediately at security@viddarpan.com.

Was this article helpful?