Security & trust — LearnCore Systems

Data residency

Default region: EU (Hetzner Frankfurt) — applies to all Starter and Growth tenants.
US option: Available on Enterprise — chosen at tenant creation, never moves after.
On-premise / private cloud: Available on Enterprise via a Kubernetes Helm chart — your infra, your encryption keys.

Encryption

In transit. TLS 1.3 on every endpoint. HSTS preload on the marketing surface; managed cert rotation.
At rest. AES-256 at the volume layer. Database backups encrypted with a separate KMS-managed key.
Secrets. All third-party tokens (Stripe, Anthropic, OpenAI, Google AI, etc.) live in a single secrets vault, never in code or logs.

Access controls

Role-based access at the tenant level: owner, admin, tutor, student.
SSO (SAML / OIDC) and SCIM provisioning available on Enterprise.
Audit logs for admin actions, retained 12 months on Growth and 24 months on Enterprise.
Mandatory 2FA for any LearnCore staff with production access. Production access is logged and reviewed monthly.

Compliance

GDPR: Compliant by default. DPA available on request — see /dpa.
SOC 2 Type II: Audit in progress, target completion Q3 2026. Trust report available under NDA.
Sub-processors: Anthropic, OpenAI, Google AI (LLM inference for homework review & tutor chat — pick per tenant), Hetzner (hosting), Stripe (billing). Full list with purposes available in the DPA.
Data deletion: On tenant termination: all student PII purged within 30 days, anonymised analytics retained for product metrics.

AI & student data

Homework submissions and tutor-chat transcripts are sent to whichever frontier LLM the tenant picked — Anthropic (Claude Opus 4.7 / Sonnet 4.6), OpenAI (GPT-5.5), or Google AI (Gemini 3.1) — for inference only. They are not used to train models; we operate under each provider's no-training data agreement (Anthropic Zero-Retention, OpenAI Zero Data Retention, Google AI no-training tier). Submissions are processed in EU regions where available.

Want to disable AI for a tenant? Possible — set ai.disabled = true at tenant config. Homework reverts to fully human-graded; the tutor chat is hidden.

Reporting a vulnerability

If you've found a security issue, please don't open a public ticket. Email security@learncore.systems with reproduction steps and an expected impact. We acknowledge within 1 business day and aim to triage within 5.

Hall of fame and a paid bug-bounty program are coming alongside the SOC 2 audit.