Trust & Compliance

Security and Data Safety

SOC 2-compliant infrastructure, encryption at rest and in transit, and the operational discipline higher-ed institutions expect.

Comprehensive Approach to Managing Academic Operations

Configured for your institution, protected by default

Implementing your institution on the APL nextED platform involves a comprehensive approach to managing academic operations. It starts with configuring the APL system hierarchy — users, roles, and permissions — so institutions tailor the system to their unique needs and ensure the right access for the right people.

Password strength and security are essential components of this process to safeguard sensitive data. APL security features ensure that data is protected and access is restricted to authorized users only.

APL nextED Systems Security

SOC 2 compliance and comprehensive safeguards

Security policies & best practices

Our Security Policies document encompasses encryption, employee access, password management, infrastructure, redundancy, backups, event and availability monitoring, logging, DevOps automation, secure development practices, agile project management, and vulnerability scans.

  • Advanced monitoring and intrusion detection
  • Vulnerability scans and secure coding practices
  • Logical backups and hourly backup testing
  • Continuous Integration with automated UAT and unit testing

Cloud data center & redundant architecture

APL's cloud data center is fully SSAE 16 compliant and hosted on Amazon Web Services, with access restricted to core Operations staff. Servers are configured for redundancy with distributed, fault-tolerant architecture and automatic recovery.

  • Hourly backups with regular restore testing
  • Centralized syslog for critical system events
  • Template-driven provisioning and recovery
  • Agile project management with continuous delivery

Access Control & FERPA Compliance

Strict controls for employee and user data

Access controls

Strict access-control measures are in place for both employee and user data access. Retention policies purge all data upon service termination. A secure SFTP gateway facilitates data import and export.

Federated SSO support

APL nextED can integrate with your existing federated single-sign-on services, including Okta, OneLogin, Microsoft Azure, and Google Workspace — so access is managed by your institution's identity provider.

See all platform integrations →

Trust APL to prioritize your security and data-safety needs. Our platform offers comprehensive security measures and best practices to protect your data and restrict access to authorized users only.

— APL nextED Security Statement

Questions about our security posture?

We're happy to walk through our SOC 2 report and security policies with your team.

Contact Us