Student Privacy in the age of big data

Slides:

Advertisements

Similar presentations

Protection of privacy for all Students!

Advertisements

Confidentiality and HIPAA

The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.

Today’s Schools face:  Numerous State and Federal Regulations  Reduced Technology Funding  More Stringent Guidelines for Technology Use.

Silicon Valley Apps for Kids Meetup Laura D. Berger October 22, 2012 The views expressed herein are those of the speaker, and do not represent the views.

Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.

Insights on the Legal Landscape for Data Privacy in Higher Education Rodney Petersen, J.D. Government Relations Officer and Security Task Force Coordinator.

Data Retention LIS 550 Winter 2010 Unsworth Tuesday, March 02, 2010.

FARMINGTON AREA PUBLIC SCHOOLS SUMMER TECHNOLOGY ACADEMY AUGUST 18TH, 2010 Web 2.0 Tools.

What is personally identifiable information (PII)? KDE Employee Training Data Security Video Series 1 of 3 October 2014.

FAMILY EDUCATIONAL RIGHTS AND PRIVACY ACT Electronic Signatures This work is the intellectual property of the author. Permission is granted for this material.

SMART GRID: Privacy Awareness and Training – for PUCs/PSCs A Starting Point December 2011 SGIP-CSWG Privacy Group 1 DRAFT.

Contemporary Issues in Canadian Health Care Nola M. Ries, MPA, LLM Adjunct Assistant Professor, University of Victoria Research Associate, Health Law Institute,

Managing Risk in Cloud Computing Contracts Henry Ward and Todd Taylor April 30, 2015.

Sharing Low-Income Customer Information Water & Energy Utilities LIOB Meeting - January 2009 Seaneen M Wilson Division of Water & Audits.

Company Confidential How to implement privacy and security requirements in practice? Tobias Bräutigam, OTT Senior Legal Counsel, Nokia 8 October

Privacy and Security of Protected Health Information NorthPoint Health & Wellness Center 2011.

707 KAR 1:360 Confidentiality of Information. Section 1: Access Rights 1) An LEA shall permit a parent to inspect and review any education records relating.

Student Confidentiality: The FERPA/HIPAA Facts AISD Policy Student Records AISD Procedure AP. 11.

How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.

IBT - Electronic Commerce Privacy Concerns Victor H. Bouganim WCL, American University.

Patient Confidentiality and Electronic Medical Records Ann J. Olsen, MBA, MA Information Security Officer and Director, Information Management Planning.

The Culture of Healthcare Privacy, Confidentiality, and Security Lecture d This material (Comp2_Unit9d) was developed by Oregon Health and Science University,

Data Governance 101. Agenda  Purpose  Presentation (Elijah J. Bell) Data Governance Data Policy Security Privacy Contracts  FERPA—The Law  Q & A.

Web 2.0 Melanie Hartgraves Director of New Media Governor David. A. Paterson Jessica Harrison Social Media Coordinator New York State Department of Labor.

Approved for Public Release. Distribution Unlimited. 1 Government Privacy Rick Newbold, JD, MBA, CIPP/G Futures Branch 28.

FERPA Guidelines for Cooperating Teacher and University Supervisors.

Privacy Act United States Army (Managerial Training)

1/29/ Ask Matt - November 2011 – FERPA – Surveillance Video and Emergencies Matt Carver, J.D., Director of Legal Services tel fax.

Human Subjects Research Requirements (EDGAR Part 97) General Rule When federally-supported research involves human subjects, it must be approved by an.

CONFIDENTIALITY. Three Confidentiality Laws 1.FERPA-Family Education Rights and Privacy Act (State Policy 4350: Procedures for the Collection, Maintenance.

Confidentiality LaRhonda Kirkland Special Education Consultant August 2009.

“Kids First, New Mexico Wins!” NMPED Data Conference Spring 2016 Dan Hill General Counsel, Public Education Department Randi Johnson General Counsel, State.

Protection of Personal Information Act An Analysis on the impact.

Laws and Regulations. Family Educational Rights and Privacy Act Children’s Online Privacy Protection Act Protection of Pupil Rights Amendment Health Insurance.

Juvenile Legislative Update 2013 Confidential Records and Protected Disclosures.

Jim Loter Director of Information Technology

Nassau Association of School Technologists

The Pennsylvania State University

Student Data Privacy and Security

What is HIPAA? HIPAA stands for “Health Insurance Portability & Accountability Act” It was an Act of Congress passed into law in HEALTH INSURANCE.

Privacy principles Individual written policies

Florida Information Protection Act of 2014 (FIPA)

Data Security Policies

Student Confidentiality: The FERPA/HIPAA Facts

Obligations of Educational Agencies: Parents’ Bill of Rights

"Praise Temple Ministries" Privacy Statement "Praise Temple Ministries" is highly sensitive to the privacy interests of consumers and believes that the.

Service Organization Control (SOC)

Privacy Policies & Your Library: Perfect Together?

Chapter 20 Additional Assurance Services: Other Information

Florida Information Protection Act of 2014 (FIPA)

PERSONAL DATA PROTECTION ACT 2010

Bob Siegel President Privacy Ref, Inc.

Privacy & Access to Information

Move this to online module slides 11-56

Spencer County Public Schools Responsible Use Policy for Technology and Related Devices Spencer County Public Schools has access to and use of the Internet.

Human Subjects Research Requirements (EDGAR Part 97)

Data Security and Privacy

Paul T. Smith, Esq. Partner, Davis Wright Tremaine LLP

Tools & Approaches for Ongoing Privacy Compliance

THE 13TH NATIONAL HIPAA SUMMIT HEALTH INFORMATION PRIVACY & SECURITY IN SHARED HEALTH RECORD SYSTEMS SEPTEMBER 26, 2006 Paul T. Smith, Esq. Partner,

IAPP TRUSTe SYMPOSIUM 9-11 JUNE 2004

Student Data & Privacy.

PRIVACY PRESENTATION TO THE SPRING 2013 CONFERENCE BY HANK MOORLAG

What does that have to do with me?

Student Data Privacy: National Trends and Wyoming’s Role

Evaluation and assessment

Privacy Principles Melinda Clarke.

Protecting Student Data

Student Confidentiality: The FERPA/HIPAA Facts

Presentation transcript:

Student Privacy in the age of big data Ann Ewbank Montana State University

Student Privacy https://youtu.be/BhymvuozoWk

Why should librarians be concerned? In a library (physical or virtual), the right to privacy is the right to open inquiry without having the subject of one's interest examined or scrutinized by others. ... Rights to privacy and confidentiality also are implicit in the Library Bill of Rights' guarantee of free access to library resources for all users.

HOUSE BILL NO. 619 INTRODUCED BY D. ZOLNIKOV, D. BEDEY, L. JONES (Transmitted to Governor 4/8/19) AN ACT ALLOWING THE SUPERINTENDENT OF PUBLIC INSTRUCTION TO RELEASE STUDENT-LEVEL INFORMATION TO THE COMMISSIONER OF HIGHER EDUCATION AND THE DEPARTMENT OF LABOR AND INDUSTRY UNDER LIMITED CIRCUMSTANCES AND WITH ASSURANCES THAT STUDENT DATA PRIVACY WILL BE MAINTAINED The Montana Constitution guarantees citizens both a right to know and a right to privacy. ... Article 2, Section 10 of the constitution states: “The right of individual privacy is essential to the well-being of a free society and shall not be infringed without the showing of a compelling state interest.”

Google Classroom

Intended for children under 13. Collection or use of data is limited to product requirements. Personal information is displayed publicly. Users can interact with trusted users and/or students. Notice is provided in the event of a data breach. Parental consent is required.

PBS Kids Video

Intended for children under 13. Collection or use of data is limited to product requirements. Personal information is not displayed publicly. Users can interact with trusted users and/or students. Notice is provided in the event of a data breach. Parental consent is required.

Remind

Intended for children under 13. Collection or use of data is limited to product requirements. Personal information is not displayed publicly. Users can interact with trusted users and/or students. Notice is provided in the event of a data breach. Parental consent is required.

ALA Privacy Checklist for K-12 Schools Priority 1 Actions Create internal library procedures to protect student privacy based on: school policies related to privacy and confidentiality of student data, especially student circulation records and the use of library resources in all formats. federal laws such as the Family Educational Rights and Privacy Act (FERPA), Children’s Online Privacy Protection Act (COPPA), and state privacy laws regarding library records. ALA and AASL resources

ALA Privacy Checklist for K-12 Schools Priority 2 Actions Advocate within the school or district for protecting students’ privacy rights in learning management systems or other technologies that enable educators to monitor student reading and research habits. Assessment should not include monitoring how students use specific library materials and online resources as part of free inquiry and research. Volunteer to serve on the school’s data governance committee. If one does not exist, advocate for its creation.

ALA Privacy Checklist for K-12 Schools Priority 3 Actions Work with school officials to incorporate privacy protections into RFP’s and resulting contracts. Discuss privacy concerns with digital resource and technology vendors, especially in regards to the school’s/library’s contracts with these vendors. Ensure that all online transactions between client applications and server applications are encrypted. Ensure that storage of personally identifiable student information is housed using encrypted storage.

✘ Not collect, maintain, use or share student personal information beyond that needed for authorized educational/school purposes, or as authorized by the parent/student. ✘ Not sell student personal information. ✘ Not use or disclose student information collected through an educational/school service (whether personal information or otherwise) for behavioral targeting of advertisements to students. ✘ Not build a personal profile of a student other than for supporting authorized educational/school purposes or as authorized by the parent/student.

✘ Not make material changes to school service provider consumer privacy policies without first providing prominent notice to the account holder(s) (i.e., the educational institution/agency, or the parent/student when the information is collected directly from the student with student/parent consent) and allowing them choices before data is used in any manner inconsistent with terms they were initially provided; and not make material changes to other policies or practices governing the use of student personal information that are inconsistent with contractual requirements. ✘ Not knowingly retain student personal information beyond the time period required to support the authorized educational/school purposes, or as authorized by the parent/student.

✔ Collect, use, share, and retain student personal information only for purposes for which we were authorized by the educational institution/agency, teacher or the parent/student. ✔ Disclose clearly in contracts or privacy policies, including in a manner easy for parents to understand, what types of student personal information we collect, if any, and the purposes for which the information we maintain is used or shared with third parties. ✔ Support access to and correction of student personally identifiable information by the student or their authorized parent, either by assisting the educational institution in meeting its requirements or directly when the information is collected directly from the student with student/parent consent.

✔ Maintain a comprehensive security program that is reasonably designed to protect the security, privacy, confidentiality, and integrity of student personal information against risks – such as unauthorized access or use, or unintended or inappropriate disclosure – through the use of administrative, technological, and physical safeguards appropriate to the sensitivity of the information. ✔ Require that our vendors with whom student personal information is shared in order to deliver the educational service, if any, are obligated to implement these same commitments for the given student personal information. ✔ Allow a successor entity to maintain the student personal information, in the case of our merger or acquisition by another entity, provided the successor entity is subject to these same commitments for the previously collected student personal information.

Social Media https://youtu.be/YEztyhevYlk

Thank you! Questions?