To demonstrate our commitment to data security, we collaborate with vetted third parties to audit our platform, data security processes, and compliance with global regulations.
These audits hold us accountable and ensure that we are meeting the highest standards for data security and protecting our users’ privacy. Below is a list of all of our current certifications, pledges, and audits, with more on the horizon.
On February 17, 2021, Proctorio completed an independent SOC 2 Type 1 Audit. The signed report confirms that the evaluated system controls provided “reasonable assurance that Proctorio’s service commitments and system requirements would be achieved based on the applicable trust services criteria”.
Read more about this audit on our blog
As of April 23, 2021, Proctorio also achieved an ISO/IEC 27001:2013 certification. This validates that Proctorio’s Information Security Management System (ISMS) received third-party accreditation from the International Standards Organization. This certification was developed to standardize the process for establishing, implementing, operating, monitoring, reviewing, and maintaining an ISMS.
Read more about this certification on our blog
Proctorio worked with A-LIGN, an independent third-party auditor, to complete both certification audits. Proctorio also anticipates completing the SOC 2 Type 2 security audit, an internal controls report that verifies how a company safeguards customer data.
Using industry-leading tools, techniques, and penetration testing processes, White Oak concluded that Proctorio appropriately implements Zero-Knowledge Encryption and never possesses the encryption keys for the audio/video recordings stored. The audit also concluded that the cryptographic functionality was implemented appropriately using industry standard and vetted algorithms and their implementation libraries.
White Oak Security determined that video and audio recordings for exams are stored in the proper geographical regions based on the given partnered institution in accordance with local privacy and security laws. The regions tested include the USA, Canada, the European Union, the Middle East, and Australia.
Proctorio engaged White Oak Security, a leading information security consulting company, to perform a month-long Security Assessment of our software and cloud environment from June 24 to July 24, 2020 to ensure appropriate usage of Zero-Knowledge Encryption and local data security law compliance.
Proctorio has been recognized by The Internet Keep Safe Coalition (iKeepSafe) for meeting the highest data security and privacy standards. The iKeepSafe Coalition reviews education-based software companies to make sure that they are doing everything in their power to keep test-taker information safe. Proctorio was the first remote proctoring software to earn the iKeepSafe certification.
Proctorio’s iKeepSafe certifications include:
Proctorio has proudly signed the Student Privacy Pledge and has been a continuous facilitator in discussions, surrounding the increase and improvement of the security of test-taker data and privacy. To be a signatory of the Student Privacy Pledge, Proctorio’s platform and approach to privacy underwent a thorough audit to ensure that we adhere to the Privacy Pledge’s stringent standards.