EduPulse 365 is architected on a "Zero Content Access" principle. We connect to your admin configuration layer, never your user data layer.
Many security tools ask for broad "Global Admin" access. We don't. PulseScan uses a least-privilege Service Principal that can only read Configuration APIs.
"Is External Sharing enabled?"
"Are Guest Users allowed?"
"Is Legacy Auth blocked?"
Student emails or chats.
Files in OneDrive/SharePoint.
PII (Personally Identifiable Information).
We identify sharing settings that risk FERPA violations by exposing student records publicly.
Ensuring your tenant's safety settings align with Children's Internet Protection Act requirements.
Monitoring age-gating and data collection settings for students under 13.
Our baseline mapping aligns with NIST Cybersecurity Framework best practices.
We store a snapshot of your configuration metadata (e.g., "MFA is set to Disabled") to generate your PulseScore. We do not store user-generated content.
No. The PulseScan connection is Read-Only. We cannot accidentally break your environment. Remediation is performed by you (with our expert guidance) to ensure you maintain control.
Simply remove our Enterprise App registration from your Entra ID. Our access is instantly revoked. You remain in full control of the connection at all times.