Data privacy and digital assessment

When making the transition to digital assessment, an institution’s chosen platform provider becomes responsible for the handling of huge amounts of personal data. It is therefore important to understand how digital assessment platforms promote and ensure data privacy to guarantee the protection of staff and students alike. 

At UNIwise, our primary security focus is safeguarding the data that our customers and users trust WISEflow with. In order to ensure this robust safeguarding, we have developed a security framework that complies with best practices established across the software-as-a-service (SaaS) industry. 

  • One of our key objectives is customer trust and protection. This means ensuring that the services and products we are providing are of a superior and consistent standard, all while working to protect our customers’ privacy, and their confidential information

  • We also strive to ensure the availability and continuity of our services. Through the ongoing availability of our services and data, to all authorised individuals concerned, UNIwise is working to proactively minimise any and all security risks threatening WISEflow’s continuity. 

  • Another way that we strive to guarantee security is through championing information and service integrity. We ensure that customer information and data is never corrupted or altered inappropriately. 

  • A cornerstone of data security is compliance with industry standards. WISEflow implements controls and processes to align with current and relevant international regulatory standards, having designed a robust and thorough cloud-based security program. 

In line with these international industry standards, we have a number of certifications speaking to WISEflow’s high standards of data security. UNIwise has been certified for ISAE 3402, which proves that an independent service auditor has approved and issued an assurance report on the description of controls, their design and their implementation regarding the exams and assessment platform services from WISEflow.

Building and maintaining service resilience is another way that SaaS companies can guarantee data security for their customers. WISEflow’s architecture is based on a multi-redundant setup without "single-point-of-failure" bottlenecks. As such, app and database servers are located in different data centres. The asset data is always stored in at least three physically separate EU locations, and the database layer is built as a cluster with at least three nodes, where there is write and read access to all nodes in the cluster.  

  • For more information on our cloud-security policy, and our privacy policy, see here. 

With such a secure and compliant digital assessment platform, making the digital transition has never been safer. If it’s time for your institution to make the digital switch, get in touch at hello@uniwise.eu

We have also recently been awarded the D-Seal, for IT security and data ethics. The D-seal is an internationally renowned Danish labelling program which promotes the responsible use of data. Through achieving D-seal certification, UNIwise can now more comprehensibly secure digital trust, as its strict criteria recognise robust and responsible approaches to data protection, ensuring accountability to our partners and users alike. 

WISEflow is a cloud-based service, and so it is important to identify our hosting provider. We work with Amazon Web Services (AWS), who are responsible for protecting the infrastructure running all our cloud services provided by AWS Cloud. There are multiple third-party organisations that have certified AWS, and it manages many compliance programs to ensure compliance with laws and regulations.