Unstructured data cannot be accessed outside BrainyMate, and all credentials are securely encrypted.

​

To protect sensitive student and teacher information, unstructured data—such as chat transcripts or free-form inputs—is fully contained within BrainyMate’s secure infrastructure. External access is blocked by design. All passwords and login credentials are encrypted using secure hashing protocols, ensuring that even if data is compromised, it cannot be exploited. This guarantees safe access for all users across the platform.

Only authorized users—students, teachers, or school admins—can access designated features and data within BrainyMate.

​

BrainyMate uses robust, role-based access controls to ensure that each user only accesses what they are authorized to. Students can engage with their personal learning modules, teachers can review progress and assign content, and admins can manage system settings. An authentication system governs all access, reinforcing platform integrity and protecting sensitive data from misuse.

Student conversations and interactions are never used to train AI models—protecting privacy and maintaining educational trust.

​

BrainyMate’s green-walling approach isolates all student data—questions, responses, and learning behaviors—from AI model training. This means the platform does not learn from or reuse student interactions, protecting privacy and respecting educational boundaries. This commitment supports compliance with FERPA, GDPR, and Canada’s AIDA, putting student trust and safety first.

Student data is backed up for two years by default, but schools can customize how long data is kept or when it’s deleted.

Each school or district can set their own data retention preferences based on their internal policies or legal obligations. While the system automatically backs up data for two years (to ensure learning continuity and performance analysis), administrators can request shorter or longer retention periods, as well as scheduled or instant deletion. This ensures full compliance with school board rules and regional laws.

All student data is stored in a Virtual Private Cloud (VPC) environment with no external access points.

​

BrainyMate’s infrastructure is built within a VPC—an isolated cloud environment with no open connections to external systems. This prevents unauthorized access from the outside, ensuring a safe and contained data environment. Only internal, tightly monitored services can interact with the database, safeguarding the platform from intrusion or leakage.

Every interaction—student questions, AI responses, assessments—is encrypted and protected during transmission.

All communication between the AI tutor and its users happens over SSL/TLS-encrypted channels, ensuring that no one can intercept or tamper with the data. Whether students are answering questions, reviewing feedback, or teachers are assigning modules, everything is secured while in transit—protecting sensitive educational data from being exposed over the internet.