Trust Center

Security Roadmap

Current capabilities already in production, and future enhancements that extend them. Listed separately so planned work is not mistaken for missing fundamentals.

Last updated: 29 May 2026Version: 1.1.0
Client overview PDF

Overview

Priorities may shift based on customer needs, regulatory expectations and engineering capacity. The roadmap demonstrates direction, not a fixed delivery schedule.

Current Capabilities

Authentication & sessions

Implemented

Credential-based authentication with server-side session validation for protected access.

Role-based access control

Implemented

School-scoped roles and permissions that limit what staff and other users can view or change.

Encryption in transit and at rest

Implemented

HTTPS/TLS for client traffic and provider-managed encryption for database and storage at rest.

Operational logging & monitoring

Implemented

Application and platform logging with health monitoring to support operations and incident response.

Managed backups

Implemented

Database backups through infrastructure providers to support recovery planning.

School (tenant) isolation

Implemented

Logical isolation so users from one school cannot access another school’s records.

Future Enhancements

  1. Enterprise Multi-Factor Authentication

    Planned

    Additional authentication factors for staff accounts beyond current credential-based authentication.

    Enhancement 1 of 8

  2. Single Sign-On

    Planned

    Enterprise SSO options so schools can authenticate with their identity provider.

    Enhancement 2 of 8

  3. Expanded Audit Analytics

    Planned

    Richer audit trails and reporting for sensitive administrative and security-relevant actions, building on existing operational logging.

    Enhancement 3 of 8

  4. Expanded Security Reporting

    Planned

    Clearer in-product and Trust Center reporting for administrators and procurement teams.

    Enhancement 4 of 8

  5. Advanced Monitoring & Threat Detection

    Planned

    Deeper observability and improved detection of suspicious authentication and access patterns, extending current monitoring.

    Enhancement 5 of 8

  6. Additional Compliance Documentation

    Planned

    Further questionnaires, evidence packs and policy artefacts for procurement programmes.

    Enhancement 6 of 8

  7. Feature Flags

    Planned

    Safer staged rollouts of security-sensitive features across school environments.

    Enhancement 7 of 8

  8. Granular Permission Improvements

    Planned

    Finer-grained roles and resource-level controls for complex school organisations, extending current RBAC.

    Enhancement 8 of 8

Contact Security Team

Questions about security, privacy or procurement questionnaires.