Data Security & Protection Policy
Last Updated: 1st October 2025
1. Objective
To secure all school, parent, and student data hosted on Life09.care.
2. Security Measures
- SSL encryption on all pages
- Encrypted database credentials
- Firewalls and brute-force protection
- Daily automated backups
- Role-based access
- Secure API integrations
- Routine security audits
- Two-factor authentication (if enabled)
3. Data Access Rules
- School admins access only their own data
- No cross-institution visibility
- Life09 support engineers access data only with written permission from the school
4. Data Breach Protocol
If a breach occurs:
- School is notified within 72 hours
- Breach is investigated
- Data is restored from backup
- Logs and forensic reports are preserved