Hey Gergely,
Our information security standards:
Where possible, testing of new applications should be done with fabricated data that mimics the characteristics of the real data, or on copies of real data with any Medium, High or Very High Risk Information appropriately sanitized. Testing should not be done on live data due to the threat to its confidentiality and/or integrity. Testing that requires the use of live data or High/Very High Risk Information must have appropriate security controls employed.
Using sample/fabricated data also allows us to have students work on projects. Otherwise they aren't authorized to access real data.
What are the local development environments like inside Instructure?
Cheers,
Jeff
