Just a little background. I used to work at my colleges library as a tutor and I noticed the tutorial center needed a service to manage their sessions and tutors so I decided to create one.

I’ve made pretty decent progress and showed it to my boss but the security concerns seem to be the only obstacle that may prevent them from actually implementing my SaaS. The main concern is the fact that student data will be housed in the applications database, which of course at production stage would be a database uniquely for the school that I wouldn’t have access to, however I’m not sure if that’s enough to quell their concerns

My boss hasn’t spoken to the Dean about it yet but is about to do so. I want to be proactive about this so I was wondering if there are any key points I can begin to address so I might potentially already have a pitch regarding how I plan to address the common security concerns that may arise from using a 3rd party software.

Any guidance will be appreciated and please let me know if you need any more information.