By Audience: Postsecondary School Officials

The resources on this page are intended for staff and educators of Postsecondary Institutions.  Resources found here typically address FERPA’s requirements and how they apply to the various day-to-day operations of postsecondary institutions that may be different than the K-12 setting.  Guidance is also provided for the particular challenges encountered at the postsecondary level as it relates to the handling and protection of students’ Personally Identifiable Information.

Guidance and Best Practices

Checklist: Data Governance

This checklist is designed to assist stakeholder organizations with establishing and maintaining a successful data governance program by summarizing the key data privacy and security components of such a program and listing specific best practice action items.

Guidance Videos

Protecting Student Privacy While Using Online Educational Services

This Privacy Technical Assistance Center teacher training video is aimed at helping K-12 school officials to better protect student privacy while using online educational services and applications. The video, intended for use during teacher in-service days or professional development meetings, offers a short summary of the issue and provides some examples to help educators identify which online educational services and applications are privacy-friendly and protect student data from improper use and disclosure.

Best Practices for Data Destruction

The Data Destruction document is a best practices guide on properly destroying sensitive student data after it is no longer needed.  It details the life cycle of data and discusses various legal requirements relating to the destruction of data under FERPA, and examines a variety of methods for properly destroying data.  The guide also discusses best practices for data destruction and provides some real-world examples of how to implement it within your organization.