Skip to content
MN School Docs

Security Overview

The MN School Dashboard is designed to meet the security and compliance standards schools and districts require before approving any third-party tool. This section covers authentication, data protection, regulatory compliance, and what your IT team needs to know.

Authentication

Section titled “Authentication”

Staff sign in using Google Single Sign-On (SSO). The dashboard does not manage passwords or create separate credentials. Your district’s existing Google Workspace for Education security policies — including two-factor authentication requirements and managed device policies — apply automatically.

See Sign-In Security for full details on how authentication works and what OAuth scopes are requested.

Access control

Section titled “Access control”

Access is provisioned and managed by school administrators. No staff member can access the dashboard without an explicit invitation and role assignment. Access can be revoked immediately from the Admin page — effective on the next sign-in attempt.

Data protection

Section titled “Data protection”
AreaProtection
Data in transitEncrypted via HTTPS/TLS
Data at restEncrypted at rest
Student data sharingNever sold or shared with third parties for commercial purposes
AI trainingStudent data is never used to train AI models
Support accessSupport staff access student data only when necessary to resolve a reported issue, and only with school authorization

Regulatory compliance

Section titled “Regulatory compliance”
  • FERPA — Multiple Natures International operates as a school official under FERPA. Student profile data is processed under a signed Data Processing Agreement (DPA) with your school or district. See FERPA Compliance.
  • COPPA — The dashboard is a staff-only tool. Students do not have dashboard accounts. Student-facing MN assessment intake is handled separately under appropriate age-related data practices.

Vendor review and procurement

Section titled “Vendor review and procurement”

If your district requires a vendor security review, privacy impact assessment, or signed DPA before approving the tool, contact support@multiplenatures.com. We will provide the documentation your district needs.

See Data Processing Agreement and District IT Checklist for details.