• 

  We haven't chosen PRONOTE in hosted mode: what additional security measures do we need to put in place?

If you don't choose PRONOTE in hosted mode, it's up to you to ensure the security of the server where your institution's PRONOTE database is located. According to Article 32 of the RGPD on the obligation to secure personal data, all the following conditions must be guaranteed:

• Users connect to an address starting with https...
• The server is protected against theft and has access control.
• The server is protected against accidental destruction, such as fire.
• A back-up infrastructure is available in the event of hardware or power failure.
• The server has all its software updates.
• The server is not used for other functions.
• Data and log notebooks are backed up daily on separate media.
• The quality and speed of the server's Internet connection are guaranteed at all times.
• Network equipment protects user data in the event of IT attacks.