Privacy & Security Notice

At Certify Assessment Solutions, we understand the importance of security and data privacy when it comes to our assessment platforms. That’s why we’ve implemented robust hosting solutions and built-in security systems to ensure your data is protected at all times. Our Smartest Suite of assessment platforms includes Smartest Examiner, Smartest Invigilate, and Smartest Nexus, all of which are designed to comply with the EU’s General Data Protection Regulation (GDPR).

 

 

The SmarTest Examiner platform is hosted on Azure cloud services, which provides data privacy and security for both data in transit and at rest. Azure’s Transport Layer Security (TLS 1.3) ensures secure data transfer, and the Azure Key Vault is highly configurable to meet our specific infrastructure needs. The platform’s access and permission infrastructure includes predefined roles and responsibilities for users, with a hierarchical access system that ensures only authorized users have access to specific data. Test-takers are token users and once the exams are over, their token expires, and they can no longer access the exam.

 

The SmarTest Invigilate platform is hosted on Amazon Web Services (AWS) and uses AWS’s Elastic Compute Cloud (EC2) server units for processing and streaming. The platform uses a unique IP address for each EC2 server, which helps prevent cyber attacks on the system. AWS’s Cognito and Route53 (DNS services) are used to guard against unauthorized access to data on the server. The system uses tokens for user access that expire at some point, requiring the user to log in again to resume their session. AWS’s Identity and Access Management (IAM) provides security for data at rest by allowing us to create root folders for all users with several types of access, and users are authenticated every time they try to access the system.

 

The SmarTest Nexus central portal for test-taker registration and management, test centre management, and test administration management is hosted on Plesk Onyx web hosting service. Plesk Onyx provides data privacy and security for both data in transit and at rest, using Transport Layer Security (TLS 1.3). All passwords stored in the Plesk database are encrypted, preventing unauthorized access to sensitive data. The platform’s access and permission infrastructure includes predefined roles and permissions for users and groups, with a hierarchical access system that ensures only authorized users have access to specific data. Only the Super admin has access to all data.

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

We also have a team dedicated to monitoring and improving our security and data privacy measures to ensure the highest level of protection for our clients’ data and to ensure compliance with GDPR regulations. We also take steps to regularly audit our systems and procedures to ensure that we are providing the highest level of security and compliance for our clients. We understand that data privacy is of the utmost importance and we strive to provide the best possible service to our clients. Trust that your data is safe with us at Certify Assessment Solutions.