Resources

This section houses all guidance documents, training materials, policy letters and other resources dedicated to protecting student privacy.  To narrow the list of documents below, use the drop down menus to select the type of resource, the topic and/or the audience and click the ‘apply’ button.  An updated list of resources will then be displayed below.

Guidance and Best Practices

Data Breach Response Checklist

This publication provides educational agencies and institutions with a checklist of critical breach response components and steps to assist stakeholder organizations in building a comprehensive data breach response capability. The checklist is meant to be used as a general example illustrating some current industry best practices in data breach response and mitigation applicable to education community.

Guidance and Best Practices

Presentation: 25th Annual MIS 2012 - Protection of Personally Identifiable Information Through Disclosure Avoidance Techniques (Feb 2012)

This presentation reviews key disclosure avoidance concepts and provides best practice suggestions for implementing the techniques to ensure proper protection of the privacy and confidentiality of student records under the Family Educational Rights and Privacy Act.

Letters

SPPO Findings Letters 2011 (June - December)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from June to December of 2011.

Guidance and Best Practices

Addressing Emergencies on Campus

This guidance is directed to school officials who may be reassessing their campus safety policies by offering a summary of two applicable Federal education laws administered by the Department of Education (Department): the Family Educational Rights and Privacy Act (FERPA) and the Higher Education Act of 1965 (HEA), as amended.

Letters

SPPO Findings Letters 2011 (May 17 - 31)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from half of May 17 to May 31, 2011.

Letters

SPPO Findings Letters 2011 (May 1 - 17)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from May 1 to half of May 17, 2011.

Letters

SPPO Findings Letters 2011 (April 13 - 30)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from  April 13 -30 of 2011.

Letters

SPPO Findings Letters 2011 (April 1 - 12)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from April 1 to 12 of 2011.

Letters

SPPO Findings Letters 2011 (March 11 - 31)

As part of its enforcement activities under FERPA, the Student Privacy Policy Office issues a variety of letters to include letters that explain why an investigation will not be initiated as well as that detail our findings after conducting an investigation. While we have identified those letters of more significance and posted them under “Letters of Importance,” we also want to make available the full collection of findings letters we issued in this archive. The attached archive, in ZIP file format, contains redacted letters from March 11 to 31 of 2011.