The ImpactEd platform: security and data protection
Many of our projects take place using the ImpactEd platform
. This is a digital platform that makes it easier to monitor and evaluate the impact of any intervention or initiative you might be running in your educational setting.
The ImpactEd platform connects with school information systems such as SIMs through a tool called Wonde. Wonde allows schools to directly share data from their management information systems (MIS) through a secure and encrypted connection. This means that your information is always up to date, you can control the data which is accessed, and you can revoke our access to your data at any time. You can find out more about Wonde's security here
As well as accessing data from your MIS, the ImpactEd platform can be used to administer questionnaires. Responses to these questionnaires are held directly in the ImpactEd platform. We run these through a tool called Typeform
. No personally identifiable information is shared from the ImpactEd platform to Typeform.
The ImpactEd platform is fully secure, compliant with the UK GDPR and Data Protection Act 2018, and can only be accessed through secure usernames and passwords. Our example Data Sharing Agreement
outlines the protections we take through the ImpactEd platform, which include:
1. All pupil data on the ImpactEd platform is fully anonymised by default for ImpactEd staff unless you explicitly grant us access to view personal data (for example, to provide technical support).
2. All data is protected by encryption, including 256-bit SSL/TLS encryption in motion and 128-bit AES at rest.
3. All personal data is processed only within the UK or European Economic Area or under equivalent adequacy arrangements approved by the European Commission, unless you have consented otherwise.
4. The data we access through the ImpactEd platform can be controlled via the Wonde portal. If you wish to revoke our access to data, this can be done instantly.