Rustici Software's
SCORM Blog

Subscribe

Archive


Tweets by Rustici Software



Topics

Authors

At Rustici Software, the General Data Protection Regulation (GDPR) came at an ideal time for us to complete a self-review of our data privacy (see our official description of what we’ve done here). Our tools can be many things to many people, with each product having its own set of data privacy scenarios to think through. GDPR pushed us to take a close look at each of our tools, improving them as we found things that could be better. We began this process thinking we were doing everything already, only to discover ways to build better tools.

Of course we went through the normal process of evaluating our company-wide privacy policy and made some small changes. We were proud that we already valued our customers’ data as their own, never shared it out with a third-party for commercial gain and took every reasonable step to keep data secure. We’ve participated in Safe Harbor and Privacy Shield certifications in the past, which guided our existing policies. Nevertheless, we tweaked some internal policies and improved our stance. We also put some GDPR-required Data Processing Addendums in place for all the tools we use and with customers who rely on our hosted tools.

SCORM Cloud:

Our SCORM Cloud product was one of the first places we looked. Since its creation, SCORM Cloud has grown to launching over a million new courses each month. SCORM Cloud offers four ways to invite a learner to take a course, so we thought through GDPR implications for each. We’re grateful for our SCORM Cloud user base, who carefully considered our platform’s impact on their GDPR obligations and worked with us to get the right tools in place. The GDPR had an impact on each of these invitation methods.

Public Invites:

These invites provide a simple link that allows easy entry to a course. We needed to provide ways to delete the information that this method creates. While SCORM Cloud does not capture much, we do capture First Name, Last Name, Email Address, Quiz and Assessment Data, as well as xAPI Statements. We determined that it was too hard to delete this data, when requested to do so. We built tools to make this data management and deletion much easier; we wanted to make it easier for our SCORM Cloud customers to manage the GDPR data deletion requirements. You can review these PII deletion tools here.

Private Invites:

These invites provide a direct email to allow a learner to take a course. We also needed to provide ways to delete the information that this method creates. Again, while SCORM Cloud doesn’t capture much, we do capture First Name, Last Name, Email Address, Quiz and Assessment Data, as well as xAPI Statements. We determined that it was too hard to delete this data, when requested to do so and we built tools to make this data management and deletion much easier. You can also review these PII deletion tools here.

SCORM Cloud Dispatch:

SCORM Cloud Dispatch is a popular way to help content creators control their courses inside a third-party LMS. Dispatch provides six benefits to a course owner, who needs their content to play nicely inside nearly any third-party LMS. Since Dispatch has the potential to capture some learner’s personally identifiable information (PII) we have added a tool that can anonymize the PII learning data. This tool can help meet a content owner’s desire to control courses, without giving up their GDPR obligations. We’ve also added in an optional tool that will display a privacy policy at the bottom of the SCORM player window. Now using Dispatch can still be possible in an GDPR compliant environment. Dispatch users can learn more about our PII blocker here.

SCORM Cloud API:

Many of our SCORM Cloud’s integrations are purely API based. In order to support these customers, a new API has been added that makes the data delete operations available, in order to help our customers meet their GDPR obligations. Using the API, you can identify a learner ID (or xAPI Actor) and request SCORM Cloud delete all data about that learner from our system. The developer’s documentation for our PII and GDPR learner deletion tools can be found here.

SCORM Engine:

The cornerstone of our ability to help the eLearning industry “play nice” with one another has been our SCORM Engine. This application is relied on by hundreds of learning platforms and LMSs throughout the world. It was critically important that we provide tools within the SCORM Engine to help our customers more easily meet their platform’s GDPR obligations.

Engine now features the ability to delete learner data, via new API calls. We released this API enhancement as an Engine 2017.1 maintenance release. Additionally, we’ll be introducing a user interface for performing the same ‘learner delete’ operations as part of our Rustici Engine 2018.1 release. Existing Engine customers are encouraged to simply upgrade their Engine application to enable the latest GDPR data management tools. We’ve also added the ability for customers to have a privacy policy optionally displayed at the bottom of the SCORM Player window.

Content Controller:

Much like SCORM Cloud Dispatch, Content Controller needed some tools to make managing GDPR obligations easier. Upgrades were done to make sure Content Controller users aren’t tracking personal data for training when utilizing Content Controller to launch training through other LMSs. Content Controller customers now have the ability to enable one-way hashing of learner identifying data captured through various learning standards. When this option is enabled Learner Identifiers and Learner Names will be hashed (SHA-256) in the learner’s browser before that data is transmitted to the application providing the dispatch package. We’ve also added the ability for Content Controller customers to have a privacy policy optionally displayed at the bottom of the SCORM Player window. This guide provides more about PII inside Content Controller.

To sum it up

Nothing with privacy and software is final. Here at Rustici Software, we view data privacy and protection as a goal to continually strive for. The GDPR will most certainly evolve and we intend on doing whatever is reasonable to continue to support customers all over the world, while protecting their valuable data. If you have concerns about our existing tools, GDPR posture, or data privacy policy, please let us know. We’re always willing to take a closer look at our solutions and try to evolve them in new ways.

No Comments | Post a comment »



Changes are abound at SCORM.com and Rustici Software! We wanted to let you know about a few things coming soon and a recent leadership change to help keep you in the loop.

What’s changing?

Coming soon, SCORM.com will have a whole new look. Don’t worry, the content and resources that you rely on the most aren’t going anywhere. We’re just updating the look of the website to provide you with a more modern, user friendly experience. And most importantly, you can always reach out to us with any questions when it comes to SCORM or working with the eLearning standards, before or after the updates.

What’s already changed?

If you’ve been following SCORM.com for awhile, you might be familiar with Mike Rustici and Tim Martin, the co-founders of Rustici Software (the folks behind this site). As you might know, Mike Rustici departed Rustici Software back in 2016 to become the CEO of Watershed LRS. More recently Tim Martin has moved on from Rustici Software to become the Chief of Innovation and Products for the Learning Technologies Group (LTG), our parent company at Rustici Software.

With Tim’s recent departure, we’re excited to announce that TJ Seabrooks will now lead the charge as the new CEO for Rustici Software. TJ most recently served as the Director of Products and brings a wealth of technical leadership and expertise to his new role.

What does this mean?

Nothing, really. Aside from SCORM.com (and all of our websites) getting a face lift, it’s business as usual over here.

No Comments | Post a comment »



The third and last list, as part of our blog-post series, we intend to celebrate is the Fosway 9-Grid. Fosway Group is a leading European HR Analyst focused on Next Gen HR, Talent and Learning. 9-Grid™ is a five dimensional market analysis model that is used to understand the relative position of solutions and providers in the learning and talent systems market.

The five dimensions of 9-Grid™ are:

  1. Potential – the solution’s scope and sophistication
  2. Performance – comprising market performance and customer performance
  3. Presence – historic and current presence including size of related business and number of enterprise customers
  4. Total Cost of Ownership – the full cost of acquiring, implementing and operating the solution (typically over a 3 year period)
  5. Future Trajectory – the impact of trends in the market, related to a vendor’s Performance and Potential

Lucky for us, we have clients who won in each of the five Fosway 9-Grid categories.

  1. Learning Systems: five learning systems of Fosway’s grid use Rustici Software products including SCORM Engine, Content Controller and SCORM Cloud.
  2. Talent Management: one of the Core Challengers on the grid uses SCORM Engine to help with their xAPI and SCORM needs.
  3. Digital Learning: three digital learning systems use SCORM Engine to help them with standards. One of them even uses our offline SCORM extension.
  4. Authoring Systems: seven authoring tools benefit from SCORM Driver, which helps them convert content so it supports eLearning standards.
  5. Cloud HSM: Last but not lease, one of our clients using SCORM Engine to help with their stands support.
No Comments | Post a comment »



We know our customers have been spending a lot of time thinking through how GDPR affects their business and the learning data they maintain on behalf of their customers. So have we.

We’ve been working hard to make sure our customers have the tools necessary to accommodate any GDPR-related requests they may receive, while also auditing our internal systems and procedures to make sure we’re following industry best practices related to privacy and security.

As we get closer to releasing these new tools, we want to make sure our customers know what they are and how to make use of them. GDPR impacts each of our products differently.

Below is a sneak peek of what’s to come in each. More details can be found on our GDPR home page, which will always have the most up to date information on our support and product updates related to GDPR.

SCORM Cloud and SCORM Engine

We are adding the ability to delete learner data within both SCORM Cloud and SCORM Engine.

There will be different methods for accessing this function in SCORM Cloud depending on how you interface with the application.

We will include additional API methods in an upcoming maintenance release for Engine 2017 to support deleting learner data. Engine 2018 will include a user interface that can facilitate deleting learner data.

Dispatch and Content Controller

Based on collaboration with some of our customers, we’ll be helping you ensure you aren’t tracking personal data when utilizing Dispatch or Content Controller to launch training through other LMSs. We are adding the ability to enable one-way hashing of learner identifying data captured through various learning standards. When this option is enabled Learner Identifiers and Learner Names will be hashed (SHA-256) in the learner’s browser before that data is transmitted to the application that is providing the dispatch package.

What Now?

If you have more questions about how these features work, when they’ll be available, how you use them, or believe you need a Rustici Software Data Processor Agreement (DPA), please contact us at GDPR@scorm.com.

Remember, we’ll be continually updating our GDPR and Rustici Software Products webpage with the most up to date information.

No Comments | Post a comment »



This week, we’re cheering, “Hurrah!” for our clients who were named a top LMS by John Leh in his recent list, “2017 Talented Learning LMS Awards: Best of the Best.”

John Leh is CEO and Lead Analyst at Talented Learning, LLC. Named one of the Top 20 Global eLearning Movers and Shakers of 2017, John is a fiercely independent LMS selection consultant and blogger who helps organizations develop and implement technology strategies – primarily for the extended enterprise. John’s advice is based on twenty years of industry experience, having served as a trusted LMS selection and sales adviser to more than 100 learning organizations with a total technology spend of more than $65 million.

John Leh’s “2017 Talented Learning LMS Awards: Best of the Best” lists the top three LMSs (along with honorable mentions) in ten categories:

  1. Best Extended Enterprise LMS
  2. Best Channel and Partner LMS
  3. Best Customer LMS
  4. Best Compliance LMS
  5. Best Talent LMS
  6. Best Continuing Education LMS
  7. Best Association LMS
  8. Best Academic LMS
  9. Best Learning Tech Innovator
  10. Best LMS Thought Leader

We will highlight the Rustici Software clients each category.

Best Extended Enterprise LMS

#1 eLogic

eLogic and Rustici Software have worked together for many years and we’ve enjoyed watching their eSSEntial LMS platform evolve. eLogic uses SCORM Engine to support SCORM, AICC, xAPI and PENS. Plus they use Engine’s offline SCORM support in their mobile app.

#3 Litmos

Litmos was an early adopter of xAPI and is a leading SaaS based LMS. They were the first LMS to integrate with with our Engine LRS. Recently, they have also adopted our offline SCORM support using SCORM Engine .

Best Channel and Partner LMS

#2 NetExam

NetExam has carved out quite a name for themselves as a leading platform in the Channel Partner and Extended Enterprise training/learning space. NetExam’s SaaS based platform integrates SCORM Engine to support of all standards based eLearning content, including xAPI.

Honorable Mentions

  • LogicBay: A long time SCORM Engine customer, LogicBay uses Engine to supplement the training and enablement components of their channel partner management system, ChannelStack.

Best Customer LMS

#2 Litmos

#3 ServiceRocket – Learndot

ServiceRocket’s Learndot LMS is a fast-growing platform targeted to other software companies to deliver product training. They integrate our SCORM Engine to allow clients to import, launch and track standards based eLearning content.

Best Compliance LMS

#2 Blackboard

A long time SCORM Engine customer, Blackboard‘s Learn application uses Engine to handle the fine details around playing and tracking SCORM, AICC and xAPI content.

#3 eLogic

Honorable Mentions

  • RISC: RISC’s Virtual Training Assistant is a compliance focused LMS designed to help their clients ensure their employees are up to speed on the latest corporate and regulatory compliance standards. They have integrated our SCORM Engine to be able to support standards-based eLearning content and track employee progress.
  • Compli: Compli has a workforce compliance automation platform with a learning component that integrates our SCORM Engine to support standards based eLearning content. Their platform is primarily geared toward the Automotive industry though they are branching out to the Transportation and Consumer Lending industries to deliver compliance training.
  • Gyrus: Gyrus is a long standing customer who has integrated SCORM Engine for eLearning standards support in their LMS. The GyrusAim Product Suite is designed to completely manage the learning & development programs of companies ranging from 20 learners up to multi-site, enterprise organizations requiring complex training necessitated by hundreds of departments and tens of thousands of learners.

Best Talent LMS

#3 Sumtotal

SumTotal is a major player in the LMS space and they use SCORM Engine to help them support xAPI. The platform has an integration with SCORM Engine and the Rustici LRS.

Best Continuing Education LMS

#3 eLogic

Best Academic LMS

#1 Instructure Canvas

Canvas now supports SCORM content natively using SCORM Engine. Customers can bring in their third-party SCORM content into Canvas and access the SCORM Engine player via an LTI connection to seamlessly upload and delivery SCORM content from within Canvas.

#2 Blackboard

Honorable Mentions

  • D2L: The Brightspace LMS by D2L provides a modern, SaaS based LMS that supports a variety of learning modalities. Through the SCORM Engine integration, Brightspace now provides a 508 compliant content player and can support xAPI within the LMS.

Best Learning Tech Innovator

#2 Degreed

Leading in the Learning Experience Platform space, Degreed uses SCORM Cloud to help customers include standards-based eLearning content along side content from Lynda.com, YouTube and many other third-party content services.

Honorable Mentions

  • eLogic
  • Litmos
  • Wisetail: Wisetail offers a comprehensive learning platform geared toward the food, retail, and fitness industries featuring custom branding, social collaboration, and course authoring components. They integrate our SCORM Engine to support clients need to import, launch and track standards based eLearning content.

Best LMS Thought Leader

#2 ServiceRocket – Learndot

Honorable Mentions

  • eLogic
  • Litmos
No Comments | Post a comment »


Older Posts »

Browse Categories

Using the Standards

Tips, tricks and solutions for using SCORM and AICC.

Standards Evolution

Our chronicling and opinion of the evolution of SCORM.

Rustici Software

Stories about who we are and what we're up to.

Products

News about our products. Notifications of new releases and new features.

Ideas and Thoughts

Miscellaneous thoughts and ideas about e-learning, entrepreneurship and whatever else is on our minds.

Software Development

Ideas about software development and how we manage things internally.