Security

The authoring tool is hosted on Microsoft Azure and Cloudflare. We don't publish detailed information about our infrastructure for security reasons — what's below is a high-level overview. For the underlying platforms themselves, see the Microsoft Trust Center and Cloudflare Security.

Hosting and data residency

Customer data is stored in Microsoft Azure data centers in the European Union (Netherlands). Course assets are additionally distributed across Cloudflare's global network for fast and resilient delivery.

Tenant isolation

Each customer tenant is logically isolated at the database level via row-level security. A user can only ever access data that belongs to their own tenant — even when the underlying tables are shared.

Authentication

Customer logins are handled by Kinde, a dedicated identity provider. Passwords are never stored in the authoring tool itself.

Encryption

• In transit: all communication with the authoring tool is encrypted over HTTPS.
• At rest: customer databases are encrypted using Azure SQL's Transparent Data Encryption (TDE).

Backups

Customer databases are backed up automatically and kept within the same Azure region. Course assets are replicated across the Cloudflare network for resilience.

Secure development

Our development process follows the "Security by Design" principle — security considerations are part of every phase, so issues can be caught and addressed early.