Data security and accessibility compliance at Glean

Interested in exploring how Glean complies with data, security and accessibility standards? Here we cover our credentials and share how we ensure an optimum, yet secure, note taking experience for learners and educators alike.

Clock 3 min read Calendar Published: 16 Jan 2025
Author Phoebe Hoar
Data security and accessibility compliance at Glean

 

At Glean, we’re know that data usage, storage and access is of paramount importance to our customers. To provide reassurance, and demonstrate our robust practices, here’s an outline of our adherence to data compliance regulations and accessibility standards.

What is data protection?

In short, data protection means keeping your personal information safe; ensuring it is only used in ways that are fair, legal, and respectful of your privacy.

It’s about treating your personal information responsibly and ensuring it’s not shared or used in ways that could harm you. We want to reiterate that you can trust us when we say we comply with data protection laws and help to protect our customers.

What does Glean do with data?

Glean is dedicated to protecting the confidentiality, integrity, and availability of your personal data. As a result, we’ve implemented physical, administrative, contractual, and technical measures to prevent unauthorized access, loss, alteration, or disclosure of your data.

Access is restricted to employees, contractors, and approved third parties who process data solely on our instructions and under strict confidentiality. We respect your privacy and will never share or sell your data.

We also want to make it clear that all notes made by students are confidential, our employees cannot view notes and recordings.

For a full breakdown on how we store, process and use data, take a look at our privacy policy.

How does Glean comply with data security regulations?

At Glean, we recognize the importance of transparency when it comes to what, why and where we process data, as well as how we safeguard it.

As our headquarters are in the UK, we must comply with UK GDPR. This is one of the most comprehensive privacy regulations in the world and everyone, no matter where they live, deserves to have their privacy protected to the same high standard.

That's why we follow the key principles of the UK GDPR for all the personal data that we handle; so wherever you are, you can expect the same treatment from us.

Here’s an overview of how we comply with data protection to ensure data is stored and used securely:

Is Glean HECVAT compliant?

Glean has completed a HECVAT full version 3.0 self-assessment. The aim of the assessment is to show our compliance with industry standards and explain the security and privacy protocols that we have built into our infrastructure.

You can find out more about what HECVAT involves here.

Is Glean TX-Ramp compliant?

As of October 2024, Glean is TX-RAMP Level 2 certified (valid until October 2027). This is to ensure the security of cloud computing services used by Texas state agencies.

Is Glean SOC2 compliant?

To ensure compliance with security, availability, processing integrity, confidentiality, and privacy of data, Glean contracts A-LIGN, a US-based auditor, to perform a SOC 2 Type II audit annually.

The last audit was conducted in April 2024 with a report issued in May 2024, covering the period 1 January 2023 - 31 December 2023. All reports are available on request by emailing legal@glean.co. If you are not a current customer, we'll need to enter into a Non Disclosure Agreement with you before you may access the report.

For more information on HECVAT, TX-Ramp and SOC2, check out our security page.

How does Glean meet accessibility standards?

Here at Glean, we are accessible by design, allowing all students to benefit from our note taking software. Part of this includes meeting international accessibility standards, something that is of paramount importance to those requiring accommodations.

WCAG and VPAT

The Web Content Accessibility Guidelines (WCAG) define the requirements for designers and developers to improve accessibility for people with disabilities, defining 3 levels (Level A, AA and AAA).

Glean’s products and services are partially conformant with WCAG 2.1 level AA. Partially conformant means that some aspects of the content don't fully comply with the accessibility standard.

More information on this, and our remediation plan, can be found here.

How do Glean's AI features use data?

We currently have the following features with AI capabilities;

  • Transcription
  • Live Captions
  • Quiz Me
  • Outline

We use two third party providers - AssemblyAI and Microsoft Azure. Here’s how data is used within these AI features:

✅ User data is used to deliver the service, improve the software, and maintain a secure environment.
✅ Approved third party providers can only use a user's data for specific purposes set by Glean in line with a Data Processing Agreement.
✅ The owner of content captured in Glean doesn't change: so if it's yours, it stays yours.

🚫 We don't sell or rent user data
🚫 We don't create our own AI models
🚫 We don't allow third parties to train their AI models on Glean data
🚫 We don't automatically record, transcribe, summarize, or generate quizzes for users.

For a deeper dive into AI, take a look at our AI FAQs.

Useful links

Privacy notice
Glean security
Help centre
See how Glean works
Time for a simpler, smarter note taking accommodation?

Time for a simpler, smarter note taking accommodation?

Glean is the online note taking tool that makes compliance simple, reduces cost and admin burden, and improves student outcomes.
Learn More

More from Supporting Students

View All
How to advocate for class recording in higher education
Clock 2 min read

How to advocate for class recording in higher education

Advocating for recording in class can be challenging, so we're exploring how to navigate potential roadblocks. Tracy Blanchard from Louisiana State University and Allie Quinn from Mitchell Hamline School of Law share their experience of working with lecture recording accommodations.
Using retention data to drive student success
Clock 3 min read

Using retention data to drive student success

By learning from their initial challenges, actively engaging stakeholders, and continuously refining their processes, United Tribes Technical College has made significant strides in improving first generation student success. Dean of Enrollment Management, Monte Schaff, tells us how they achieved it.
Understanding executive functions
Clock 2 min read

Understanding executive functions

Executive function is a set of essential skills that impact our ability to learn, work, and navigate everyday life. Here, our Learning Lead, Sammy, explores how these skills impact student life, from academic performance to social interactions and emotional wellbeing.

View All