By Audience: K-12 School Officials

The resources on this page are intended for staff and educators of public K-12 schools and school districts.  Resources found here typically address FERPA and how it applies to the various day-to-day operations of public schools at the administrative level.  Guidance is also provided for specific situations that occur only in the K-12 setting.

Guidance

Data Breach Response Checklist

This publication provides educational agencies and institutions with a checklist of critical breach response components and steps to assist stakeholder organizations in building a comprehensive data breach response capability. The checklist is meant to be used as a general example illustrating some current industry best practices in data breach response and mitigation applicable to education community.

Guidance

Presentation: 25th Annual MIS 2012 - Protection of Personally Identifiable Information Through Disclosure Avoidance Techniques (Feb 2012)

This presentation reviews key disclosure avoidance concepts and provides best practice suggestions for implementing the techniques to ensure proper protection of the privacy and confidentiality of student records under the Family Educational Rights and Privacy Act.

Letters

SPPO Findings Letters 2011 (June - December)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from June to December of 2011.

Letters

SPPO Findings Letters 2011 (May 17 - 31)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from half of May 17 to May 31, 2011.