Security, Privacy, and Accessibility
Qualtrics LTI Trust Portal
Self-service access to security, data privacy and compliance documents
The Qualtrics LTI Trust Portal serves as your central resource for information about Qualtrics LTI’s dedication to security and compliance. Whether you’re a potential customer or an existing one conducting due diligence, this portal provides the essential resources to assess Qualtrics LTI as a reliable partner.
Here, you’ll find Third-Party Audit Reports, which offer independent verification of the security controls and practices in place for Qualtrics LTI’s cloud-hosted services, as well as Compliance Documentation outlining how Qualtrics LTI meets industry data protection standards and regulatory requirements.
We invite you to explore the portal to gain a thorough understanding of Qualtrics LTI’s steadfast commitment to protecting your data and fulfilling your compliance needs.
Quick Summary
Will enter into a DPA
- Deletes customer data on request
- Sub-processors list available
- One or more annual third-party audit(s)
- Has a disaster recovery plan
- Has cyber insurance
- Has a status page
Compliance & Conformance
Qualtrics LTI is LTI Advantage certified
Qualtrics LTI is built on the trusted and proven Drieam LTI framework. This framework ensures the secure and stable data exchange with the LMS. The Drieam LTI framework is certified for LTI v 1.3, LTI Assignment & Grade Services, LTI Deep Linking 2.0. and LTI Names and Role Provisioning Services 2.0.
Drieam is SOC 2 type II Certified
Drieam was assessed on internal control policies and practices and has received SOC2 type II certification by meeting the stringent requirements set forth by the AICPA and CICA.
Drieam has access control procedures in place and we are fully trusted with highly confidential information such as passwords, documents and secure images.
Drieam is Cyber Essentials Certified
Qualtrics LTI is GDPR compliant
Qualtrics LTI is built by Drieam, based in The Netherlands. As a European company, we are strictly compliant with data protection laws, including the GDPR. See our Privacy Policy for more information.
Qualtrics LTI is WCAG 2.2 level AA conformant
As accessibility and inclusivity is a prerequisite for offering personal learning journeys, Drieam is committed to continuously improving the accessibility of Qualtrics LTI. Currently, Qualtrics LTI is fully conformant to the WCAG 2.2 level AA industry standard.
Qualtrics LTI holds TX-RAMP certification
Qualtrics LTI has passed Level 1 assessment for The Texas Risk and Authorization Management Program. TX-ramp certification is standardized approach for security assessment, certification, and continuous monitoring of cloud computing services that process the data of Texas state agencies.
Documents
Controls
- Firewall access restricted
- Intrusion detection system utilized
- Network firewalls utilized
- Network and system hardening standards maintained
- Log management utilized
- Data encryption utilized
- Password policy enforced
- Vulnerability and system monitoring procedures established
- Continuity and disaster recovery plans tested
- Incident response plan tested
- Development lifecycle established
- Whistleblower policy established
- System changes externally communicated
- Support system available
- Access reviews conducted
- Access requests required
- Production deployment access restricted
- Change management procedures enforced
- Risks assessments performed
- Data classification policy established
- Data retention procedures established