By Audience: K-12 School Officials

The resources on this page are intended for staff and educators of public K-12 schools and school districts. Resources found here typically address FERPA and how it applies to the various day-to-day operations of public schools at the administrative level. Guidance is also provided for specific situations that occur only in the K-12 setting.

Guidance

Best Practices for Data Destruction

The Data Destruction Document is a best practices guide on properly destroying sensitive student data after it is no longer needed. It details the life cycle of data and discusses various legal requirements relating to the destruction of data under FERPA, and examines a variety of methods for properly destroying data. The guide also discusses best practices for data destruction and provides some real-world examples of how to implement it within your organization.

Guidance

School Resource Officers, School Law Enforcement Units, and the Family Educational Rights and Privacy Act (FERPA)

This guidance document consists of thirty-seven commonly asked questions about schools’ and school districts’ responsibilities under FERPA relating to disclosures of student information to school resource officers (SROs), law enforcement units and others, and seeks to explain and clarify how FERPA protects student privacy while ensuring the health and safety of students and others in the school community. SRO LEU LEO

Letters

Letter to School & College Legal Services of California

Letter to School & College Legal Services of California in regards to a question about whether FERPA permits a school district to disclose personally identifiable information (PII) from a student’s “health records, such as immunizations data,” to county or State health officials without parental consent.

Letters

Letter to Agora Cyber Charter School

This is an SPPO investigation findings letter to Agora Cyber Charter School relating to FERPA requirements when contracting for online educational services and restrictions on the forced waiver of parental rights to access educational services.

Guidance

Letters

Letter to Wachter Regarding Surveillance Video of Multiple Students

Letter in response to an inquiry on FERPA regarding a request from a parent for a copy of a suveillance video of a hazing incident involving multiple students, and for copies of witness statements regarding the incident.

Guidance

Cyber Advisory - New Type of Cyber Extortion / Threat Attack

Schools have long been targets for cyber thieves and criminals. We are writing to let you know of a new threat, where the criminals are seeking to extort money from school districts and other educational institutions on the threat of releasing sensitive data from student records. In some cases, this has included threats of violence, shaming, or bullying the children unless payment is received.

Letters

FTC and the Department of Education to Host Workshop on Student Privacy and Ed Tech; Seeking Public Comments

The U.S. Department of Education and the Federal Trade Commission (FTC) will host a joint workshop on December 1, 2017 to explore the intersection of Children's Online Privacy Protection Rule (COPPA) and the Family Educational Rights and Privacy Act of 1974 (FERPA).

This workshop will solicit input from a variety of education technology vendors, schools, parents, advocates, and privacy professionals to discuss their experiences navigating FERPA and COPPA while implementing education technology in a classroom setting. The Department and the FTC are interested in learning about experiences, both positive and negative, in navigating the intersection of these statutes.

You can find a full list of questions, and information about how to submit comments, in the attached document. The workshop, which is free and open to the public, will be at the FTC’s Constitution Center, 400 7th St., SW, Washington, DC. It will be webcast live on the FTC’s website.

Guidance

Data Breach Response Training Kit

Any organization with electronic records is vulnerable to security breaches, and education agencies are no exception. The PTAC Data Breach Scenario is one of a series of exercises intended to assist schools, districts, and other educational organizations with internal data security training.

The Password Data Breach interactive exercise is aimed at district management and provides a simulated response to a district-level data breach. Over the course of 1-2 hours, this customizable exercise leads participants through a scenario involving a breach of student information and other personally identifiable information. The exercise focuses on the processes, procedures, and skills needed to respond. The package includes three parts: Facilitator’s Guide, PowerPoint Slides, and Exercise Handouts.

Best Practices

PTAC Teacher Training Focus Groups Report

The Privacy Technical Assistance Center (PTAC) conducted a series of focus groups to gain insight into teachers’ needs for training on student privacy and the Family Educational Rights and Privacy Act (FERPA). This report documents the findings of these focus groups, as well as recommendations on how to develop new student privacy and FERPA training for teachers.

Guidance

Integrated Data Systems and Student Privacy

This webinar accompanies the guidance document on Integrated Data Systems. This presentation provides background information on what an Integrated Data System (IDS) is and why educational authorities may choose to participate in one, and clarifies how such authorities can participate in an IDS while ensuring student privacy in compliance with FERPA.

« first
‹ previous
…
2
3
4
5
6
7
8
9
10
…
next ›
last »

Search form

Search form