By Audience: K-12 School Officials

The resources on this page are intended for staff and educators of public K-12 schools and school districts. Resources found here typically address FERPA and how it applies to the various day-to-day operations of public schools at the administrative level. Guidance is also provided for specific situations that occur only in the K-12 setting.

Guidance

PPRA Model Notice & Consent Opt-Out for Specific Activities

This document is a template notice for school districts to notify parents and obtain consent or allow parents to opt their child out of participating in certain school activities under the Protection of Pupil Rights Amendment (PPRA).

Guidance

Model Form for Disclosure to Parents of Dependent Students and Consent Form for Disclosure to Parents

This document is a template for postsecondary institutions to use for eligible students to consent to the disclosure of PII from educational records to their parents.

Guidance

Use of Financial Aid Information for Program Evaluation and Research

This webinar provides additional information on the use of Financial Aid Information for program evaluation and how that data sharing operates under FERPA.

Best Practices

W 2 Phishing Scam

Important Internal Revenue Service (IRS) guidance highlighting ongoing phishing attacks against K-12 schools and school districts. These attacks are targeting HR and critical business functions within organizations to access the Personally Identifiable Information (PII) from the W-2 forms of employees and, in some cases, extracting fraudulent payments from their victims. This document contains a summary of the attacks, tactics of the attackers, potential ramifications and links to the official IRS guidance.

Guidance

Integrated Data Systems and Student Privacy

This guidance document provides background information on what an Integrated Data System (IDS) is and why educational authorities may choose to participate in one, and clarifies how such authorities can participate in an IDS while ensuring student privacy in compliance with FERPA.

Letters

Rescinded: August 2020 - Cover letter to the Department’s annual notices to SEAs and LEAs

Rescinded: August 2020

The Department of Education (Department) is required to notify annually each State educational agency (SEA) and each local educational agency (LEA) of its obligations, as a recipient of Department funds, under the Family Educational Rights and Privacy Act (FERPA) and the Protection of Pupil Rights Amendment (PPRA). This is the cover letter to the Department’s annual notices to SEAs and LEAs.

Guidance

Videos

Developing a Privacy Policy for Your District

This video provides an overview and rationale for why districts need to develop a program to protect student data.

Protecting Student Privacy

By Audience: K-12 School Officials

PPRA Model Notice & Consent Opt-Out for Specific Activities

Model Form for Disclosure to Parents of Dependent Students and Consent Form for Disclosure to Parents

Use of Financial Aid Information for Program Evaluation and Research

W 2 Phishing Scam

Integrated Data Systems and Student Privacy

Rescinded: August 2020 - Cover letter to the Department’s annual notices to SEAs and LEAs

Dear Colleague Letter Regarding Military Recruiter Provisions of ESEA

Response to Assistance Request from University of North Carolina

School Volunteer Brochure

Developing a Privacy Policy for Your District

Mobile complaint link