Trust • Transparency • Lifelong impact

One platform for 5,000 schools, 5,000 hostels and every child whose future they hold.

VSMS is a unified, AES-256 encrypted school + hostel SaaS designed for welfare trusts at national scale — up to 1 crore students on a single tenant. Admissions, fees, progress, donor portal & certificates — encrypted, audited, role-isolated.

Trust Admin login Sign in to dashboard Tour the modules

AES-256-GCM

TLS 1.2+

Per-role isolation

VS-2026-0001

Riya Sharma — Class 8

Sponsored • Hostel A • Progress 86/100

5,000

Schools

5,000

Hostels

1 Cr

Student capacity

AES-256

PII at rest

Modules built for welfare trusts

Everything a trust runs, in one panel.

Open dashboard →

Admissions with mandatory medical gate

Status pinned to Draft until medical certificate uploads — enforced at the API and DB layer. No workaround.

Real-time hostel occupancy

Color-coded alerts: Green <75%, Amber <90%, Red ≥90%. Per-hostel scope, super-admin gets the heatmap.

Donor Portal

Sponsored students only. Monthly photo gallery, 4-dimension progress, marksheets, 80G receipts — donor isolation enforced via JOIN.

Marksheet workflow

Teacher enters subject marks → Admin reviews → Published to donor. Teachers cannot see other subjects.

Auto-numbered certificates

VS/TC/2026/0001, VS/CC/2026/0001 — generated as PDF, stored privately in object storage with signed access.

Bulk promotion / demotion

End-of-year orchestration. Audit trail captures every transition.

Audit logs

Every login, admission, fee, transfer, certificate — captured immutably with actor, role, IP.

Security & Privacy

Encryption isn't a feature. It's the foundation.

Every PII column — Aadhar, address, phone, guardian name — is sealed with AES-256-GCM before it ever touches MongoDB. In transit, every byte rides TLS 1.2+. Roles are enforced at the dependency layer of every endpoint.

AES-256-GCM at rest

Sensitive fields wrapped with 96-bit nonce + 128-bit auth tag. Stored as base64(nonce||ct||tag).

TLS 1.2+ in transit

Platform-managed certificates, automatic renewal.

Bcrypt password hashing

Cost factor 12, per-user salt. Plaintext never persisted.

Per-role isolation

Hostel/School admins scoped by ID; teachers locked to their subject; donors locked to assignment.

JWT cookies

HttpOnly + Secure cookies, 12-hour TTL, signed HS256.

Audit log every action

Built for national scale

From a 100-student trust to a 10-million-student network.

VSMS is engineered for horizontal scale: stateless FastAPI workers, MongoDB sharding on tenant + student keys, async I/O end-to-end, and Emergent object storage for files. Read replicas, regional caches, and CDN asset delivery keep the donor portal snappy whether a trust runs one hostel or five thousand.

≤120ms

API p95

1 Cr

students

99.95%

uptime SLO

5 roles. Hard-walled scopes.

Who sees what is decided at the API gate — not in the UI.

Super Admin

Owns hostels, schools, users, audit logs.

Hostel Admin

Single hostel scope: admissions, fees, progress, photos.

School Admin

Single school scope: marksheets, fees, promotions.

Teacher

Subject-scoped — marks for own subject only.

Donor

Assignment-scoped — sponsored students only.

Ready to onboard your trust? Sign in with seeded demo accounts to see all 5 dashboards.

Test credentials are listed below. Every interaction is encrypted and audited.

Trust Admin Login All other roles Re-read security model