3 Ways LabStats Protects Data

February 17, 2020 |  Data
4 min

As a company that makes data products, we understand the value that data can generate for colleges and universities.

At LabStats, we build products with a security-first approach, and are committed to industry-leading data security and global compliance.

There’s a lot that goes into feeling fully secure with your data, so let’s start at the beginning. LabStats is a tool that higher education organizations use to monitor hardware, software and user activity on school-provided machines. 

Why Usage Data Matters

Usage data gives you the power to increase staff efficiency, maximize your budget and improve the student experience. If you know what software students actually use, and where they use it most, you can deploy licenses strategically so they don’t have to go searching throughout campus to find Photoshop. You save staff time by automatically tracking usage, and pulling a few reports for regular check ups. You can also schedule lab hours and classrooms more strategically by tracking hardware usage. To learn more about using LabStats, visit Why Universities Should Track Student Computer Usage.

3 Ways LabStats Protects Data

The LabStats software has been vetted and accepted by hundreds of IT and security departments at universities around the world. We do not collect, store or report on any personally identifiable data. We do not allow outside agencies to access the data for any reason. We use industry-leading best practices to provide ironclad data protection, including the following:

1. Azure Cloud Services

We operate our online applications via Microsoft’s Azure Cloud Services, which offers world-class security, privacy, and compliance with data storage regulations. It has the highest security and compliance certifications, and data is protected from physical and virtual threats. Microsoft’s Azure Cloud Services is fully compliant with the Family Education Rights and Privacy Act (FERPA), and several other independently verified regulatory requirements.

Learn more: Why Use Cloud-Based Lab Monitoring Software 

2. Data Encryption

Data that moves to and from the LabStats portal is encrypted, and sensitive data is encrypted at rest. We do not collect, store or report on any personally identifiable data. No breaches have occurred; we’ll notify organizations if there is a real or perceived breach. 

3. Obfuscation

If student accounts have usernames that are personally identifiable, you can obfuscate that information in the LabStats product to further protect that data. For instance, Jane Doe’s username: “jane.doe” can be obfuscated to “user0001.”  See graphic below for details.

LabStats User Obfuscation

Global Compliance Standards

We stay up on global privacy regulations to ensure colleges and universities can use our software with peace of mind. 

GDPR

The General Data Protection Regulation (GDPR) went into effect in 2018 in the EU and the UK, and is used as the gold standard for data security in many ways.

LabStats follows regulations in the GDPR and by entities within and apart from the European Union. Our methods for collecting and processing data have been designed to protect the individual’s identity and thus, their human rights. By default, high-level security measures have been implemented to protect data subjects and their personal data. Read the official GDPR Statement.

CCPA

The California Consumer Protection Act (CCPA) went into effect in early 2020, and provides California consumers with new rights regarding their personal information. It also imposes data protection responsibilities on certain entities that conduct business in California. LabStats is compliant with CCPA, read the official CCPA Statement.

FERPA

LabStats runs on Microsoft’s Azure Cloud Services, which is fully compliant with the Family Education Rights and Privacy Act (FERPA), and several other independently verified regulatory requirements.

PIPEDA 

The Personal Information Protection and Electronic Documents Act governs how private sector organizations collect, use and disclose personal information in the course of commercial business in Canada. LabStats customers who are in Canada can opt to store data in-country.

Learn more: Why Compliance Matters and What it Means for You

We understand that with all the regulations out there, data privacy and compliance can be confusing. That’s why we put together the following list, so you can rest assured that you can use LabStats and remain fully compliant.

LabStats Data Privacy Recap

  1. LabStats does not collect, store or report on any personally identifiable data. 
  2. LabStats does not allow outside agencies to access the data for any reason.
  3. Schools can use LabStats software to collect limited non-sensitive personal information. This data is controlled by the school, not LabStats.
  4. Schools have the option to obfuscate unique identifiers within the LabStats product. 
  5. LabStats does not sell any data that we collect operationally.
  6. LabStats does not sell data originating from the LabStats product.
  7. LabStats is built on the Microsoft Azure cloud platform (highest security and compliance certifications, protected from physical and virtual threats).
  8. Data that moves to and from the LabStats portal is encrypted.
  9. Sensitive data is encrypted at rest.
  10. No breaches have occurred, we’ll notify organizations if there is a real or perceived breach.

Join the hundreds of universities that are already using LabStats: schedule a walkthrough.

<