MicroCampus
Security & Privacy

Your data is safe with us

MicroCampus is built with security as a foundation — not an afterthought. Here's exactly how we protect your school's data.

Locked in Transit

All traffic encrypted end-to-end

Encrypted Storage

All data locked at rest

Bank-Grade Payments

Stripe handles all card data

School Isolation

Your data is yours alone

How we protect your data

Encryption in Transit

Any time data travels between you and MicroCampus — whether you're taking attendance or a parent is checking a progress report — it's scrambled so nobody in between can read it. It works the same way online banking does.

Encryption at Rest

Your data isn't just locked when moving — it's also locked when sitting on our servers. Even if someone physically accessed the hard drive, they couldn't read anything without the key.

Your School, Your Data Only

Every school on MicroCampus is completely walled off from every other. Your students, parents, and records are invisible to other schools — and theirs are invisible to you. There's no way for one school to accidentally (or intentionally) see another's data.

Passwords Are Never Stored As-Is

When you or a parent sets a password, we immediately scramble it before saving — meaning even our own team cannot see what your password is. Sessions expire automatically after 8 hours and sign-out instantly clears your access.

Everyone Only Sees What They Should

Admins, teachers, and parents each have their own view. A parent can only see their own child. A teacher can't see billing or admin settings. Every page and every API call enforces these boundaries — not as a UI trick, but at the server level.

Double-Locked at the Database Level

Even if someone somehow got hold of our database address, they still couldn't read your data. The database itself has a second lock that blocks any access not explicitly authorized — your school's data is inaccessible without a verified, authenticated session.

We Never Touch Your Card Details

Payments are handled entirely by Stripe — one of the most trusted payment processors in the world. We never see your card number, CVV, or bank details. That information goes straight from your browser to Stripe and never touches our servers.

Hosted on Infrastructure You Can Trust

MicroCampus runs on enterprise-grade infrastructure with 99.9%+ uptime guarantees. Our hosting providers handle security patches automatically so you don't have to worry about keeping anything updated.

Two-Step Login (2FA)

Admins can turn on two-step login from their account settings. When enabled, signing in requires both your password and a one-time code sent to your email — so even if someone gets your password, they still can't get in.

Our privacy commitments

We believe in being completely transparent about how we handle your data.

We never sell, rent, or share your data with third parties for advertising purposes.

Student data is never used to train AI models or for any purpose outside operating MicroCampus.

We collect only the data necessary to provide the service.

Administrators can export or delete all school data at any time by contacting us.

We notify affected users promptly in the event of any security incident.

All third-party integrations (Stripe, Google Sheets) are opt-in and can be disconnected at any time.

Student Data Protection

MicroCampus stores student information (names, attendance, grades, and progress) on behalf of your school. You own your data. We just run the software.

  • Student data is isolated per school — other schools cannot access it
  • Parent access is limited to their own child's records only
  • Student data is never shared with or sold to third parties
  • You can request full data export or deletion at any time

Security questions or concerns?

If you discover a security vulnerability or have questions about our data practices, please contact us directly.

security@microcampus.site