Security & Compliance
LectureAid is built for higher-education institutions that need to protect student data while delivering AI-powered accessibility. Our complete compliance documentation — including HECVAT, VPAT, Security Overview, DPA, FERPA, data retention, incident response, and vendor management — is available to institutional reviewers under NDA.
Privacy & Student Data
FERPA-aligned handling, school-official direct-control posture, configurable retention, and a Data Processing Agreement available on request.
Security Architecture
Encryption at rest and in transit, row-level security at the database layer, SSO/SAML support, and audit logging across privileged actions.
Vendor & Sub-Processor Posture
Production stack runs on SOC 2 Type II infrastructure providers. A complete sub-processor list and DPA are included in our compliance pack.
Accessibility (WCAG 2.1 AA)
Our public accessibility statement, conformance approach, and assistive-technology compatibility are documented at /accessibility-statement.
Higher-Education Reviews (HECVAT, VPAT)
Completed HECVAT 4 Lite responses and VPAT 2.5 are available to institutional reviewers under NDA. Request via the contact below.
Incident Response & Continuity
Documented incident-response, breach-notification, and disaster-recovery plans are included in our compliance pack on request.
Request our compliance pack
University procurement, IT-security, and accessibility teams can request the full compliance pack — HECVAT 4 Lite, VPAT 2.5, Security Overview, Data Processing Agreement, sub-processor list, incident-response plan, and supporting policies — by contacting our security team. We typically share documentation under a mutual NDA and respond within two business days.
Contact Security Team