The Standards & Protocols We Follow

We support and continually seek compliance with all relevant U.S. laws and industry standards and guidelines (and international standards when reasonably able.) We are ever mindful of our responsibility for your customers' data privacy and security. We follow federal guidance on accessibility, universal design and revised 508 Standards.

Revised 508 Standards
Accessibility and Universal Design
Family Educational Rights and Privacy Act
Children’s Online Privacy Protection Act of 1998
NIST 800-171/DFARS Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
Student Privacy Pledge introduced by the Future of Privacy Forum
ISO/IEC 27018:2014
Data standards
SCORM & Interoperability
support for SCORM conformance, interoperability and xAPI specification
The Software & Information Industry Association
Standards & guidelines
Payment Card Industry Data Security Standards
PCI Compliance & ongoing validation: PCI DSS, GDPR, PSD2, CSA
Let's Encrypt
Let’s Encrypt and the ACME protocol make it possible to set up an HTTPS server and have it automatically obtain a browser-trusted certificate, without any human intervention. This is accomplished by running a certificate management agent on the web server.