eKRTA

eKRTA is a Hungarian educational technology provider headquartered in Hungary. The company develops and operates a school management platform that handles the administration of educational institutions. This platform is designed to store and manage personal data of students, including information for learners aged six to eighteen. eKRTA’s services are used by schools across Hungary, supporting daily administrative tasks such as attendance tracking, grade recording, and communication. By focusing on the education sector, the organisation serves a market that includes public and private schools seeking digital solutions for student information management. The platform’s functionality extends to facilitating interactions between teachers, students, and parents through integrated messaging features.

The platform is described as widely deployed throughout Hungary, indicating a broad national footprint. It stores extensive records for hundreds of thousands of students, reflecting a substantial user base. This scale suggests that eKRTA’s system is a significant component of the country’s educational infrastructure. The reach of the service encompasses multiple regions, allowing schools in diverse localities to access the same centralized platform. Such widespread adoption implies that the organisation processes a large volume of sensitive data on a regular basis. The extent of its deployment has made the platform a notable presence in the Hungarian edtech landscape.

eKRTA specializes in the management of sensitive student data within educational environments. Its core competency lies in providing a secure digital repository for personal information, academic records, and communication logs. The organisation positions itself as a key provider of school management solutions in the Hungarian market, focusing exclusively on the education sector. The 2022 breach by the cybercriminal group Sawarim highlighted both the volume of data entrusted to the platform and the potential impact of security incidents on student privacy. During that incident, attackers accessed personal information of hundreds of thousands of students and leaked portions of the company’s source code and internal communications. This event underscores the importance of robust data protection measures for organisations handling large volumes of minors’ personal information. While no explicit regulatory role is stated in the source material, the nature of its services implies compliance with data protection obligations applicable to educational institutions. Ownership details or parent/subsidiary relationships are not disclosed in the available information, so no structural notes can be provided.