NuXight, operates the services offered on NuXight.com (the "NuXight Website"), including the NuXight platform (the "NuXight Platform"), and any associated mobile applications (the "NuXight Apps") or products and services that Company may provide now or in the future (collectively, the "Service").
Encryption at Rest and In Transit
NuXight stores its data within an AWS region that is FedRAMP compliant.
Access to the NuXight Service occurs using encrypted connections
The AWS cloud infrastructure has been designed and managed in compliance with regulations, standards, and best practices, including HIPPA, SOC 1/SSAE 16/ISAE 3402 (formerly SAS70), SOC 2, SOC 3, PCI DSS Level 1, ISO 27001, FedRAMP, DIACAP and FISMA, ITAR, FIPS 140-2, CSA, and MPAA. Network access to the NuXight Services infrastructure is highly restricted. AWS hosted infrastructure resides in a dedicated Virtual Private Cloud (VPC) which is designed to ensure that only authorized traffic over approved ports is allowed. Learn more about Amazon’s security policies here
Backups and Availability Control
We have adapted a data backup and recovery capability that is designed to provide a timely restoration of the NuXight Services, with minimal data loss, in the case of catastrophic failure. These backups are encrypted and stored in multiple availability zones. Additional technical and organizational measures to ensure that Student Data are protected against accidental destruction or loss (physical/logical) include:
Note: Student Data is stored at AWS - and the above applies to their technical and organizational measures such as MongoDB. In addition, we have a disaster recovery plan in place.
Physical Access Controls
Security measures to prevent unauthorized persons from gaining access to the data processing systems available in premises and facilities (including databases, application servers and related hardware), where Student Data are Processed*, include:
Note: The NuXight Services and Student Data are currently hosted in AWS , which employs industry- leading physical security measures to protect their data centers and the above applies to their technical and organizational measures. These security features are regularly audited by third party auditors. You can learn more about AWS' physical security here.
Security measures to prevent data processing systems used for Student Data from being used by unauthorized persons include:
Security measures to ensure that Student Data cannot be read, copied, modified or deleted without authorization during electronic transmission, transport or storage on storage media (manual or electronic), and that it can be verified to which companies or other legal entities Student Data are disclosed, include: