1. Security Overview
SmartSchool360, owned by MJG Technologies, is designed with security controls that support safe and responsible management of school information. Because schools process sensitive information about students, parents, guardians, teachers and staff, security is treated as a core platform requirement.
Our security approach is based on layered protection. This includes access control, secure authentication, encrypted connections, audit logging, backup practices, infrastructure safeguards and responsible operational processes.
2. Access Control
SmartSchool360 uses role-based access control to limit access according to user responsibilities.
Administrators
Manage users, school setup, modules, records and configuration based on assigned permissions.
Teachers
Access assigned classes, subjects, attendance, marks, learning materials and relevant reports.
Parents & Guardians
View authorised child-related information such as reports, attendance and fee statements.
Students
Access student-facing dashboards, learning content and academic information where enabled.
Schools are responsible for assigning correct roles and removing user access when staff, parents or learners should no longer have access.
3. Authentication and Session Security
SmartSchool360 uses authentication controls to help verify user identity before granting platform access.
Authentication controls may include:
- Username and password-based login;
- Password hashing for stored credentials;
- Session timeout after inactivity;
- Secure session cookies;
- Protection against unauthorised session reuse;
- Failed login monitoring;
- Role verification after login.
Users must keep login credentials confidential and should not share accounts. Shared credentials weaken accountability and increase the risk of unauthorised access.
4. Data Protection
SmartSchool360 may process student records, parent or guardian contact details, teacher profiles, attendance records, marks, report cards, fee information, announcements, system logs and school administration data.
We apply appropriate safeguards to reduce the risk of unauthorised access, accidental loss, misuse, alteration or disclosure.
Data protection practices include:
- Restricting access based on user roles;
- Maintaining audit logs for key activities;
- Protecting administrative functions;
- Using secure hosting practices;
- Applying reasonable backup and recovery controls;
- Separating access between different user categories.
5. Encryption and Secure Connections
SmartSchool360 supports HTTPS/SSL connections to protect information transmitted between users and the platform. This helps reduce the risk of interception when users access SmartSchool360 through a supported browser.
Schools and users should always confirm they are accessing SmartSchool360 through the official secure website address and should avoid entering credentials on suspicious links or unofficial pages.
6. Audit Logs and Accountability
SmartSchool360 may maintain logs that support accountability, investigation and operational oversight.
Logs may include:
- User login activity;
- Page access records;
- IP address and device/browser information;
- Administrative actions;
- Failed login attempts;
- Security-relevant events;
- Record creation, update or deletion activities where enabled.
Audit logs help schools and platform administrators investigate unusual activity, troubleshoot issues and improve security.
7. Infrastructure Security
SmartSchool360 is hosted using web infrastructure intended to support secure and reliable service delivery.
Infrastructure safeguards may include:
- Secure web server configuration;
- Access restrictions for administrative areas;
- Database access controls;
- Regular platform updates where applicable;
- Security headers and HTTPS enforcement;
- Hosting provider security controls;
- Separation between public pages and protected system areas.
8. Backups and Recovery
Backups are an important part of platform resilience and disaster recovery. SmartSchool360 may maintain backup practices to help restore information in the event of accidental loss, system failure or other operational incidents.
Backup availability, frequency and retention may depend on the hosting environment, subscription package and technical configuration.
Schools are encouraged to retain copies of critical reports, finance records and official academic documents where required by their internal policies.
9. Monitoring and Security Review
SmartSchool360 may use monitoring and review practices to support performance, uptime, abuse detection and security improvement.
Monitoring may include:
- Reviewing access logs;
- Checking failed login patterns;
- Monitoring server and application behaviour;
- Reviewing unusual traffic patterns;
- Identifying errors or service disruptions;
- Improving platform stability and reliability.
10. Incident Response
If a security incident is suspected, SmartSchool360 will take reasonable steps to assess, contain, investigate and remediate the issue.
Incident response may include:
- Identifying the affected system or account;
- Restricting suspicious access;
- Reviewing logs and technical indicators;
- Applying fixes or configuration changes;
- Restoring service where required;
- Notifying affected schools or users where appropriate.
Users should report suspected unauthorised access, compromised passwords, unusual activity or security concerns as soon as possible.
11. School and User Security Responsibilities
Security is shared between SmartSchool360, MJG Technologies, schools and individual users.
Schools should:
- Assign correct user roles and permissions;
- Remove access for users who leave the school;
- Train users on safe platform use;
- Ensure official records are reviewed before use;
- Report suspicious activity promptly;
- Maintain internal policies for data handling and account management.
Users should:
- Use strong passwords;
- Keep login details private;
- Log out on shared devices;
- Avoid clicking suspicious links;
- Use updated browsers and secure devices;
- Report lost devices or compromised accounts quickly.
12. Security Limitations
While SmartSchool360 applies reasonable security safeguards, no digital platform can guarantee absolute security. Risks may arise from compromised user devices, weak passwords, phishing attacks, shared credentials, internet service disruptions, third-party failures or events beyond reasonable control.
SmartSchool360 continuously aims to improve security practices as the platform matures and as new risks are identified.
13. Security Contact
SmartSchool360 Security Contact
For security concerns, suspected unauthorised access, vulnerability reports or platform security questions, contact:
MJG Technologies
Email: info@woodwella.com
Website: https://woodwella.com
For school account permissions, parent access, student records or staff access changes, please contact the relevant school administrator first.