How Kortext keeps university data safe and compliant

When considering a technology partner for your higher education institution, a huge priority is ensuring that student, academic and institutional data is secure and protected whilst navigating complex laws and safeguarding practices. 

What are the current regulations?

UK universities must comply with both the Data Protection Act 2018 and the United Kingdom General Data Protection Regulation (Regulation EU 2016/679). This legislation sets out the law surrounding data handling, ensuring that individuals are aware of and consent to the ways that their personal information is being used.  

This legislation breaks down the law into seven categories, which we’ll discuss with regard to our data processing practices below. 

1. Lawful, fair and transparent

At Kortext, we take your privacy seriously and are committed to protecting it. Before users can start using Kortext study/study+, they must read and accept the Terms and Conditions and Privacy Policy.  

These documents detail exactly what data we collect, how we use it, where we store it and how long we retain it, so users and partner institutions can make informed decisions. 

2. Purpose limitation

We only collect data for specific, legitimate purposes that enhance the educational experience for our users and partner institutions.  

Whether it’s accessing digital resources or reviewing engagement patterns, Kortext ensures that personal data is not used for any purpose other than what is stated in our Privacy Policy.  

3. Data minimisation 

Data minimisation is paramount to promote a secure cyber environment therefore we only collect the data necessary to fulfil our services. This includes user credentials, course information and engagement data. 

The Kortext platforms provide granular access controls that define what features each user can access within the Kortext environment, minimising their exposure to unnecessary personal data.
 

4. Data accuracy 

Through accepting our Terms and Conditions, we ensure that users are aware that their personal data on Kortext must remain accurate and up-to-date. Our dedicated support team deals with personal data update requests to ensure that requests coming in are reflected in the system securely and promptly. 

At Kortext we ensure that our users remain in control of their data. Our policies and processes ensure that users can correct inaccuracies, with our fusion foundation ensuring that up-to-date records remain consistent across systems.  

As a UK-based company, serving the higher education sector, we are committed to maintaining transparent and robust data management practices. 

5. Storage limitation

At Kortext, will never retain information for longer than is necessary. The length of time we retain data is determined by a number of factors, including purpose and law.

University account data is deleted or returned to the university as a part of offboarding at the end of contract process. Universities or individual users have control over their data and can contact our Customer Success team to exercise the right to have their information erased prior to the end of contract. 

6. Integrity and confidentiality

Security is central to our operations at Kortext. We apply stringent controls that ensure data remains secure against unauthorised access, loss, alteration and unlawful destruction. These controls are underpinned by enterprise-grade cloud infrastructure, strong authentication and identity protection, continuous monitoring, and alignment with recognised international security standards.

7. Accountability

Kortext takes accountability for our role in data management by registering ourselves as a data controller with the ICO. 

Our partnership with Microsoft enhances Kortext fusion through its Fabric-powered foundation. This partnership means we’re supported by enterprise-grade software, meeting global data protection requirements, requiring rigorous auditing and high compliance standards.

Kortext fusion builds on this, extending and focusing the capabilities of Fabric to deliver value specifically designed to drive outcomes in higher education. 
 

At Kortext, we understand the weight of our responsibility to protect personal data and work with our partners at Microsoft to provide a robust secure infrastructure that ensures institutional data stays protected and compliant. 

Protecting student and institutional data is too important to leave to chance. Partner with Kortext and experience a secure, reliable digital learning environment. 

Talk to us today to learn how we can support your institution’s data protection practices and enhance the student experience.