SOC 2 Type II
Kognity holds independent attestation covering Security, Availability, and Confidentiality Trust Services Criteria. Available on request, subject to a non-disclosure agreement.
We take data privacy and security seriously.
Here's how we protect your school's data, the standards we're held to, and where to find the documentation you need.
Schools share deeply sensitive data with us — student records, assessment results, personal information — and we treat that responsibility with the seriousness it deserves.
Our approach to information security is aligned with recognized international frameworks, independently audited, and central to how we develop and operate our platform. The result is a safe learning environment for every student, teacher, and administrator who uses it.
Your data belongs to you.
Schools and districts retain full ownership and control of their data. We use it strictly to deliver our services, and nothing more. We never sell platform data or use it for marketing or commercial purposes.
Security and privacy come first.
Security and privacy are at the core of how we design and develop our platform. That includes continuous de-identification, strict access controls, and full encryption of data in transit and at rest. We call this approach privacy by design, and it shapes every decision we make.
Our security is independently verified.
We hold ourselves to recognized international standards and submit to regular independent audits, including annual penetration testing, so you don’t have to take our word for it.
We’re transparent by default.
You’ll always know how we use your data, how AI is used within our platform, and where we stand on the standards that matter to your school. If you need any documentation to support a procurement or compliance process, we provide it.
Find what you need
For a closer look at how Kognity protects your data, or to access the documentation required for procurement and compliance, start here:
Information Security Overview
A breakdown of Kognity’s security framework, covering data protection, access management, encryption, incident response, and more.
Legal Hub
A complete repository of Kognity’s legal documentation, including our Privacy Notice, Cookie Policy, and Terms of Service.
Compliance and certification
NIST Cybersecurity Framework (v1.1)
The National Institute of Standards and Technology framework guides how we identify, protect against, detect, respond to, and recover from security risks.
ISO/IEC 27001:2017
Our information security practices are aligned with this international standard for information security management systems.
AI deployed responsibly
When AI is used within our platform, we make that clear. AI features are held to the same privacy and security standards as every other part of Kognity — built with the same encryption, access controls, and privacy-by-design principles that protect all your data.
We test rigorously, prioritize security, and ensure our AI features comply with applicable privacy regulations and intellectual property standards.
Find out more
See how Kognity supports teaching and learning for your curriculum with a personalized demo.
