EduGradUP protects student data with encryption in transit (TLS 1.3) and at rest (AES-256), hosting on AWS's Mumbai region so data stays within India, with daily encrypted backups, role-based access control and audit logs. Each school's data is logically isolated in a multi-tenant architecture, and the platform is designed to follow India's Digital Personal Data Protection (DPDP) Act 2023 — data minimisation, purpose limitation, and the ability to export or delete a school's data on request. The school remains the data fiduciary for its students; EduGradUP acts as the data processor. All of this is included in the flat ₹12,000/year plan — security is not a paid add-on.
A school ERP holds some of the most sensitive data a family shares — children's names, photos, addresses, parent contacts, fee and academic records. Under India's DPDP Act 2023, mishandling that data carries real legal and reputational risk. EduGradUP is built so a small or mid-size school gets enterprise-grade protection without an IT team or extra cost: encryption, Indian data residency, backups, access control and audit trails are standard. Security applies the same whether you use the cloud platform or the offline Android app.
TLS 1.3 secures every connection; sensitive data is stored AES-256 encrypted at rest.
Hosted on AWS Mumbai (ap-south-1) — student data stays within India.
Automatic nightly backups, stored redundantly, with point-in-time recovery.
Admin, accountant, teacher and parent roles each see only what they should.
Every access and change is recorded, so administrators can see who did what and when.
Each school's data is logically isolated in a multi-tenant architecture — never co-mingled.
India's Digital Personal Data Protection (DPDP) Act 2023 sets the rules for handling personal data, with extra care for children's data. EduGradUP is built around its core principles:
EduGradUP supports schools in meeting their DPDP obligations; it is not a substitute for a school's own legal compliance. For details on data handling, see our Privacy Policy and data deletion process.
Yes. Data is encrypted in transit (TLS 1.3) and at rest (AES-256), hosted on AWS Mumbai, backed up nightly, and protected by role-based access and audit logs. Each school's data is isolated, and the platform is designed to follow the DPDP Act 2023.
On AWS in the Mumbai (ap-south-1) region, keeping student data within India with low-latency access.
It is designed around DPDP principles — data minimisation, purpose limitation, secure storage, role-based access, and export/deletion on request. The school is the data fiduciary; EduGradUP is the processor.
Access is role-based — admins, accountants, teachers and parents each see only what's relevant, and parents see only their own child. Every access and change is logged.
Yes. Offline data is protected on the device and encrypted in transit when it syncs, so records captured without internet stay secure until upload completes.
Encryption, Indian data residency, backups and access control — all included in the flat ₹12,000/year plan, no security add-ons.
🔒 Start 15-Day Free Trial✅ No credit card · ✅ Data export anytime · ✅ Cancel anytime