Security & Privacy
Junipa is built on Google Cloud Platform and follows Australian Privacy Principles. This section covers how we protect school data, our compliance posture, and the policies that govern data handling.
Overview
| Area | Summary |
|---|---|
| Hosting | Google Cloud Platform, Sydney region (australia-southeast1) |
| Encryption | AES-256 at rest, TLS 1.3 in transit |
| Authentication | Firebase Auth with SSO (Azure AD, Google Workspace, SAML 2.0) and MFA |
| Access control | Role-based (Teacher, Administrator, Auditor, Case Worker) |
| Backups | Automated daily, 30-day retention |
| Data residency | All data stored within Australia |
| Insurance | Professional Indemnity and Broadform Liability via CGU |
| Privacy Policy | junipa.com.au/privacy |
| Data Security | junipa.com.au/data-security |
In This Section
Data Security
How Junipa protects data at rest and in transit, authentication controls, and infrastructure security.
Privacy & Data Handling
How Junipa collects, stores, and processes personal information in compliance with Australian privacy law.
Data Processing
The data processing relationship between Junipa and schools, including sub-processors and data flows.
Incident Response
How Junipa detects, responds to, and recovers from security incidents and data breaches.
Compliance
ST4S certification, penetration testing, vulnerability management, and regulatory obligations.
Contact
For privacy or security enquiries: privacy@vastpuddle.com.au
For general support: info@junipa.com.au