data security

at schoolmint

Amid the growing threat of cybercrime in education, data security and privacy aren’t just concerns. They’re a priority.

At SchoolMint, we recognize the ways in which K-12 is vulnerable to cyber threats, and so we remain committed to securing our systems and protecting the data and privacy of the more than 11,000,000 students and 16,000 schools/districts we serve.

compliance and regulations

SchoolMint adheres to the Family Educational Rights and Privacy Act (FERPA) and the Children’s Online Privacy Protection Act (COPPA).

SchoolMint is also compliant with SOC 2. Each year, we undergo an extensive third-party audit of our SOC 2 Type II status to demonstrate the controls and practices we have in place to safeguard clients’ data.

security measures

Protecting data is a responsibility SchoolMint doesn’t take lightly. That’s why we’re always evolving, improving, and adding new safeguards to keep our client and student data secure. Read on to learn about those safeguards.

robust data encryption

All data SchoolMint handles is encrypted according to industry-standard protocols — including encryption in transit and at rest — to ensure its confidentiality.

secure data centers

All database and server access goes through an approval process, and these systems are strictly secured from unauthorized access from anyone outside SchoolMint’s private network. Our data centers are US-based and have advanced firewalls, intrusion detection, and 24/7 monitoring.

routine security audits

SchoolMint’s systems are routinely third-party penetration tested to ensure they are secure in accordance with industry cybersecurity standards. This regular testing helps us proactively identify and address potential security weaknesses.

frequent data backups

SchoolMint frequently backs up your data using multiple methods and to redundant locations. This ensures your data remains available in case of unforeseen events, minimizing disruption to your operations.

ongoing employee training

All company staff undergo regular cybersecurity training to stay informed about best practices and potential threats, ensuring your data is handled with care and expertise. Additionally, we conduct routine security assessments on employees. These controlled tests ensure we can proactively identify areas where employees need additional security training.

strict access controls

SchoolMint has strict role-based access controls to ensure only authorized personnel can access specific data. This minimizes the risk of unauthorized access. Additionally, we do not share or sell parent, guardian, student, or organization data to any third party. Your data remains yours, and we use it only to provide our services.

student privacy policy

SchoolMint is committed to maintaining student privacy and safeguarding students’ personal information. To demonstrate this commitment, we are proud to be a signatory to the Student Privacy Pledge. Read our full privacy policy here.


security council

Alvis Mantilla Gimenez

sr systems / security architect

casey bienvenu

Chief architect

charlie coglianese

Chief Technology Officer

hannah jones

senior director,
global hr strategy & projects

joshua carlson

computer jedi

scot kerr

sales engineer

tiffany durgin

manager of human resources

troy parker

vp, technical services group

zach hollwedel

svp, business operations

report an issue