We treat your data like it belongs to the families — because it does.
Pruvelo is designed for licensed childcare: least-privilege access, encryption by default, and audit trails on sensitive changes.
SOC 2 Type II
Controls audited annually — availability, confidentiality, and security practices reviewed by independent firms.
256-bit TLS encryption
Data in transit is encrypted end-to-end. At-rest encryption protects documents and backups with modern standards.
Google Cloud infrastructure
Hosted on resilient regions with redundancy, monitoring, and strict access boundaries for production systems.
Stripe for financial data
Cardholder data stays inside Stripe’s PCI Level 1 environment — Pruvelo never stores raw card numbers.
99.9% uptime SLA
Enterprise plans include financially backed uptime commitments and public status communication.
Zero data sold
We don’t monetize child or family data. Usage analytics are aggregated and minimized by design.
Permissions
Director → teacher → parent hierarchy
Directors set policy. Teachers operate classrooms. Parents see only their children — messaging, billing, and forms respect those boundaries in the product and API.
Questions about security?
Email security@pruvelo.com.