Data Sharing | Protecting Student Privacy

Guidance and Best Practices

Early Childhood Regional Meeting Resource List

This document provides a comprehensive list of links to NCES, ED, and other state practitioner’s related resources directly and indirectly related to Early Childhood data system practitioners. It includes applicable guidance documents in the areas of data use, research, privacy and security

Guidance and Best Practices

Responsibilities of Third-Party Service Providers under FERPA

This document was developed by PTAC to assist online educational services providers, vendors, and contractors in understanding the Family Educational Rights and Privacy Act (FERPA). Similar guidance, Protecting Student Privacy While Using Online Educational Services, is intended for school audiences; this guidance presents the same material, but in a format geared toward third-party service providers.

Guidance and Best Practices

Guidance for Reasonable Methods and Written Agreements

This document provides guidance for schools, school districts, postsecondary institutions, and State educational authorities (such as State educational agencies) that may disclose personally identifiable information from education records. The document provides these entities with information about requirements and best practices for data disclosures under the studies exception and the audit or evaluation exception, as specified in the Family Educational Rights and Privacy Act.

Guidance and Best Practices

Written Agreement Checklist

This document lists mandatory requirements for written agreements under the studies exception and the audit or evaluation exception, as specified in the Family Educational Rights and Privacy Act.

Guidance and Best Practices

Contractor Responsibilities Under FERPA: Single Page

This document is intended for state educational agencies (SEAs) and/or their contracted companies to use to inform the contractors’ staff about their responsibilities to protect students’ personally identifiable information acquired under FERPA’s audit or evaluation exception.

This version is a single-page .pdf intended for use as a standard FERPA-only acknowledgement.

Guidance and Best Practices

Contractor Responsibilities Under FERPA: Tri-fold

This version is a tri-fold brochure for Microsoft Word that leaves space to amend applicable state or local privacy laws.

Guidance and Best Practices

Best Practice Recommendations for SEA Websites

This document provides best practice recommendations for State educational agencies (SEAs) on presenting information about education data governance and sharing on a SEA website.

Guidance and Best Practices

Case Study # 4: PTAC Technical Assistance

This case study illustrates a scenario where a local educational agency (LEA) requests technical assistance from the Privacy Technical Assistance Center so that the LEA can come into compliance with the Family Educational Rights and Privacy Act; the illustration also clarifies the definition of an “education program.”

Guidance and Best Practices

Case Study # 3: Enforcement

This case study illustrates a scenario where the Student Privacy Policy Office (SPPO) investigates an alleged violation of the Family Educational Rights and Privacy Act, resulting in SPPO imposing a 5-year ban on sharing education data with the offending party.

Guidance and Best Practices

Case Study #2: Head Start Program

This case study illustrates a scenario where a State educational agency enters into an agreement to share education data with a Head Start Program.

Search form

Search form