Security & Data

Student privacy and institutional data control are fundamental to how Orazio operates.

GDPR compliance

GDPR compliance

Full compliance with European data protection regulations. Student data is processed lawfully with institutional consent and proper data processing agreements.

Data encryption

Data encryption

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Access is restricted through role-based permissions and institutional authentication.

Secure storage

Secure storage

Data is stored in European Union-based data centers with redundancy and backup systems. Regular security audits and penetration testing ensure ongoing protection.

Institutional control

Institutional control

Institutions retain full ownership of their data. Configure retention policies, access controls, and data deletion schedules according to your policies.

Transparent processing

Transparent processing

All evaluation outputs are interpretable and auditable. Orazio operates strictly within professor-defined theory boundaries with no external content generation.

Deletion rights

Deletion rights

Institutions can request full data deletion at any time. Export your data in standard formats before deletion or at any point during usage.

Academic perimeter guarantee

Orazio operates exclusively within the academic materials provided by professors. The system does not retrieve external information, does not reference sources outside your theory corpus, and does not generate content beyond your defined learning objectives. This ensures that all evaluations are aligned with your curriculum, accreditation standards, and institutional academic integrity policies.