The Standards & Protocols We Follow

We support and continually seek compliance with all relevant U.S. laws and industry standards and guidelines (and international standards when reasonably able.) We are ever mindful of our responsibility for your customers' data privacy and security. We follow federal guidance on accessibility, universal design and revised 508 Standards.

Revised 508 Standards
Accessibility and Universal Design
Yes
Family Educational Rights and Privacy Act
FERPA
Yes
Children’s Online Privacy Protection Act of 1998
COPPA
Yes
NIST
NIST 800-171/DFARS Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
Yes
Student Privacy Pledge introduced by the Future of Privacy Forum
(FPF)
Yes
ISO/IEC 27018:2014
Data standards
Yes
SCORM & Interoperability
support for SCORM conformance, interoperability and xAPI specification
Yes
The Software & Information Industry Association
Standards & guidelines
Yes
Payment Card Industry Data Security Standards
PCI Compliance & ongoing validation: PCI DSS, GDPR, PSD2, CSA
Yes
Let's Encrypt
Let’s Encrypt and the ACME protocol make it possible to set up an HTTPS server and have it automatically obtain a browser-trusted certificate, without any human intervention. This is accomplished by running a certificate management agent on the web server. Read about Let's Encrypt protocol
Yes