🎓 LIM26 Special: Join 200+ school leaders transforming outcomes with Ocoviz Intelligence — Book Your Demo →
Built for Student Data, From Day One

Your Students' Data Deserves the Same Protection as Your School's Reputation

Ocoviz was designed around one principle: a school intelligence platform is only as good as the trust placed in it. Here's exactly how we protect student data, who can see what, and how we stay accountable.

🇮🇳 India
Data hosted & processed within India
256-bit
Encryption in transit & at rest
Role-Based
Access control for every user type
Zero
Third-party data selling or ad use
Our Approach

Five Principles Behind Every Design Decision

Security isn't a feature we bolted on — it shaped how Ocoviz is built, from database architecture to who sees a single attendance record.

🔒

Data Stays in India

All student, teacher, and school data is hosted on servers located within India, in compliance with data localisation expectations for educational institutions.

🔑

Encryption Everywhere

Data is encrypted both in transit (TLS 1.2+) and at rest. Even in the unlikely event of unauthorised access, raw data remains unreadable.

👤

Strict Role-Based Access

A class teacher sees their class. A principal sees their school. No one sees more than their role requires — enforced at the system level, not by policy alone.

🚫

No Data Monetisation

We do not sell, rent, or share student data with advertisers or third parties. Ocoviz's business model is subscription-based — your data is never the product.

📋

Built for CBSE Compliance

Reporting formats, data retention practices, and consent workflows are designed around CBSE and Indian education board expectations from the ground up.

🛡️

Continuous Monitoring

Automated systems monitor for unusual access patterns and flag anomalies, so issues are caught early — not discovered months later.

How It Works

The Journey of a Single Data Point

From the moment attendance is marked to the moment an insight reaches a teacher — here's exactly what happens to that data.

1

Captured Securely

Data is entered by authorised staff and encrypted immediately at the point of entry.

2

Processed in India

The AI engine analyses signals on servers located within Indian borders — never transmitted abroad.

3

Access-Controlled

Insights are routed only to the staff whose role permits viewing that specific student or class.

4

Logged & Auditable

Every access event is logged, giving your school a full audit trail on request.

Compliance & Certifications

Where We Stand Today

We believe in being transparent about where we are in our compliance journey — not just what's already certified.

🏫

CBSE Reporting Alignment

Report formats, CCE structures, and assessment terminology built to match CBSE conventions used by your school today.

✓ Implemented
🇮🇳

Data Localisation

All production data is hosted within India-based infrastructure, with no cross-border data transfer for processing.

✓ Implemented
📜

DPDP Act Readiness

Actively aligning our consent, retention, and data-subject-rights workflows with India's Digital Personal Data Protection Act requirements.

⏳ In Progress
🔐

ISO 27001 Certification

Pursuing formal information security management certification as we scale to additional school groups across India.

⏳ Planned
Role-Based Access

Who Can See What, Exactly

Access in Ocoviz is scoped by role — not by default visibility. Here's how it breaks down.

Role What They Can Access Scope
Class Teacher Student profiles, attendance, assessments, and risk signals for their assigned class(es) only. Class-level
Subject Teacher Performance and assessment data for students they teach, across assigned sections. Subject-level
HOD / Coordinator Aggregated and individual data across all classes within their department or grade band. Department-level
Principal Full visibility across the school — every class, subject, and staff member's reporting data. School-level
Trustee / Administrator Institutional KPIs and compliance reporting across one or more campuses, without granular student-level drill-down by default. Governance-level
Parent Their own child's attendance, performance, and progress updates only — never other students' data. Student-level
Common Questions

Trust & Security FAQ

Straight answers to the questions principals and trustees ask us most often.

Where exactly is our school's data stored?
All data is stored on servers located within India. We do not transfer student or school data outside Indian borders for storage or processing, in line with data localisation expectations for the education sector.
Can Ocoviz staff see our students' individual data?
Access by Ocoviz staff is restricted, logged, and limited to what's required for support and maintenance. Routine operations do not involve viewing individual student records — and any support access is auditable on request.
What happens to our data if we stop using Ocoviz?
You retain full ownership of your school's data. On request, we provide a complete export in a usable format, and data is permanently deleted from our systems within an agreed retention window after offboarding.
Is parent and student data shared with any third party?
No. We do not sell, rent, or share student or parent data with advertisers, data brokers, or unrelated third parties under any circumstance. Integrations (like WhatsApp or SMS gateways) only relay messages you've authorised — they don't gain ownership of the underlying data.
How does Ocoviz handle a data breach, if one ever occurs?
We maintain monitoring systems designed to detect unusual access patterns early. In the event of a confirmed breach, affected schools are notified promptly along with a clear explanation of impact and remediation steps — we don't believe in silent fixes.

Have a Specific Security Question?

Our team is happy to walk your IT coordinator or trustees through our architecture in detail — no question is off-limits.