Compliance - TruEnroll

TruEnroll is designed for environments with strict data requirements. It provides built-in support for FERPA, CCPA, GDPR, and international privacy standards — with automated audit trails, role-based access controls, and encryption at every stage.

Certifications

SOC 2

Audited against the AICPA Trust Services Criteria for security, availability, and confidentiality.

ISO 27001

Certified under the international standard for information security management systems (ISMS).

ISO 27701

Certified extension to ISO 27001 covering privacy information management and GDPR-aligned data handling.

Privacy standards

TruEnroll’s data handling practices are aligned with the privacy regulations that govern academic records and personal data across jurisdictions:

Standard	Coverage
FERPA	Protections for student education records in the United States
GDPR	Data subject rights, lawful basis for processing, and cross-border transfer requirements for the EU
CCPA	Consumer privacy rights and data transparency obligations in California
ISO 27701	International privacy information management framework, extending ISO 27001

Security controls

Encryption at rest and in transit. All data is encrypted at rest and all API communication is over TLS.
Role-based access controls. Access to cases and results is scoped strictly to the submitting organization’s tenant.
Automated audit trails. All case submissions, result accesses, and administrative actions are logged and retained for audit purposes.

Requesting documentation

For SOC 2 reports, ISO certificates, or a security questionnaire, contact support@truenroll.com.

Translation & digitization

⌘I

​Certifications