Security Architecture Whitepaper

Last Updated: May 31, 2026

AI Teacher Assistant recognizes that protecting Special Education documentation, student reading levels, and Personally Identifiable Information (PII) is the highest operational priority for any educational institution.

To guarantee that your classroom data remains uncompromised, we have explicitly abandoned traditional "database-driven" SaaS architectures. We operate exclusively on a Stateless, Zero-Trust Execution Pipeline.

1. Zero-Trust Authentication (chrome.identity)

We utilize Google’s native chrome.identity OAuth framework.

2. In-Transit Encryption (TLS 1.2+)

All data transmitted from the local Chrome Extension to our backend API Gateway is strictly encrypted in transit.

3. Stateless Computation via Ephemeral Containers

This is our primary pillar of absolute data security. There are no persistent databases attached to our backend logic.

4. Enterprise Large Language Model (LLM) Governance

Our Agentic frameworks route requests exclusively to Google's Enterprise Vertex AI / Gemini endpoints, completely bypassing consumer-grade LLM interfaces.