Security & Privacy
StudyPulse is built with student safety at its core. We maintain the highest standards of data protection, privacy compliance, and responsible AI to ensure schools and students are protected at every level.
Assessed under the national Safer Technologies 4 Schools framework for Australian education technology
Fully compliant with the Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs)
Cloud hosted in Sydney, Australia on enterprise-grade infrastructure. End-to-end encryption and 99.99% uptime
We understand the requirements schools face when adopting new technology. StudyPulse is designed to meet institutional security standards from day one.
A formal DPA is available for all schools and institutions on request, defining data handling, retention, and deletion obligations.
We provide completed security questionnaire responses for your IT team's review, covering all standard school procurement requirements.
All staff with access to student data hold current Working with Children Checks as required by Victorian law.
Assessed under the national ST4S framework, the standardised approach to evaluating digital products used by Australian and New Zealand schools.
All data is encrypted in transit using TLS 1.2+ and encrypted at rest using AES-256. Every connection to StudyPulse is secured end-to-end.
100% of student data is stored in Sydney, Australia. All primary infrastructure is hosted exclusively within Australian data centres with 99.99% uptime.
Sign in with Google or Microsoft school accounts. All passwords are securely encrypted. Email verification is required for every new account.
All payments are processed by Stripe, a PCI DSS Level 1 certified provider. No card details ever touch our servers. School accounts are billed directly.
Account data is deleted within 30 days of a deletion request. De-identified analytics are retained for a maximum of 26 months. Payment records are kept for 7 years as required by Australian tax law.
Automated protections guard against misuse. Usage limits prevent exploitation. Continuous monitoring detects suspicious activity. Regular security reviews keep our defences current.
StudyPulse uses advanced, purpose-built AI trained on curriculum mark schemes. We are committed to the responsible development and deployment of AI in education.
Only the question text and student response are analysed. Names, emails, schools, and personal identifiers are never included.
Student submissions are never used to train or fine-tune AI models. Your data is processed for feedback and then not retained by our AI systems.
Our AI acts as a strict examiner calibrated to official mark schemes, not a general-purpose chatbot. Every piece of feedback references real marking criteria.
All AI processing occurs within our secure infrastructure. Every interaction is encrypted and logged for quality assurance.