Frequently asked
questions

Credentic is a student transcript verification platform. You submit a request with the candidate's name, email, and claimed institution. The candidate consents, and Credentic retrieves their official transcript directly from the issuing institution. You then review the extracted record in your dashboard and mark it Verified or Rejected.

Credentic is built for any team that vets candidates — admissions offices and DSOs issuing I-20s, recruiting agencies placing international candidates, and employers confirming credentials before hire. On the other side, partner institutions (registrars and student records systems) plug in to make verified records available securely.

Traditional services ask candidates to upload documents, which can be forged. Credentic obtains the official record directly from the issuing institution — with the candidate's consent — so the data is authentic by design, not by inspection.

We work with a wide and growing network of institutions. In a small number of cases, a verification may not be completable due to factors outside our control — for example, limitations in an institution's records system. When that happens, the request is marked accordingly in your dashboard so you can take next steps.

From your dashboard, open New Request and enter the candidate's name, email, claimed institution and degree. Optional fields include graduation year and student ID. We email the candidate a secure consent link automatically.

The candidate receives an invite email, clicks the secure link, and authorizes Credentic to verify their record on their behalf. Any sensitive material handled during verification is processed securely and discarded immediately after.

Most verifications complete in under two minutes once the candidate consents. End-to-end (from request to candidate consent to verified record in your dashboard) typically takes under 24 hours.

The request is marked failed in your dashboard with a reason attached. You can resend the consent invite or escalate to our team. In a small number of cases a verification may not be completable due to factors outside our control — when that happens, you'll see it in the dashboard so you can take next steps.

A structured transcript (courses, GPA, semester summaries), per-semester source documents, downloadable source artefacts, AI-flagged issues, and your Verified or Rejected decision recorded with timestamp, actor, and optional notes.

Nothing. Partnerships are free for issuing institutions. We do not charge you to connect, maintain, or operate the integration. Our revenue comes from the admissions and recruiting teams requesting verifications, not from you.

Only the fields defined in your Data Processing Agreement — typically degree title, award date, GPA or classification, enrolment status, and a hashed student ID. You control the exact scope and can adjust it at any time.

Yes. The API scope is defined in your DPA and can be restricted to specific record types, degree levels, or graduation year ranges. You retain full control over the exact data fields made available.

Consent is a hard gate. If a student does not grant consent, no query is sent to your institution — full stop. Your systems are never queried without an active, logged consent event.

Verification requests are individual, event-driven queries — not bulk data pulls. Rate limiting defaults ensure no more than 1,000 requests per day, and this can be set lower by your IT team.

You can exit with 60 days written notice. API credentials are revoked on the exit date, and all cached data is deleted within 7 days with written confirmation. No penalties, no fees.

Credentic is certified by the Ghana Data Protection Commission under the Data Protection Act, 2012 (Act 843). We also comply with GDPR, UK GDPR, and FERPA. All data is encrypted with AES-256 at rest and TLS 1.3 in transit.

Yes. We undergo annual third-party penetration testing with a remediation SLA. API credentials are rotated on a 90-day cycle and can be revoked instantly by partner institutions.

Retrieved records are deleted from Credentic systems within 24 hours of verification completion. Audit logs (without personal data) are retained for 7 years for compliance purposes.

Yes. We provide our full DPA, security architecture documentation, and Ghana Data Protection Commission certification upon qualified enquiry. Contact our team to request access.