Protection of Personally Identifiable Information through Disclosure Avoidance Techniques Michael Hawes Statistical Privacy Advisor U.S. Department of.

Slides:



Advertisements
Similar presentations
National Forum on Education Statistics sponsored by the National Cooperative Education Statistics System and the National Center for Education Statistics.
Advertisements

Family Educational Rights and Privacy Act What you should know about FERPA.
FERPA - Sharing Student Information
FERPA: UPDATE ON THE FAMILY EDUCATIONAL RIGHTS AND PRIVACY ACT Presented by Brenda V. S. Selman University Registrar-MU University of Missouri-Columbia.
THE UW HEALTH SCIENCES IRB S OVERVIEW PRACTICAL REGULATORY ISSUES IN HUMAN SUBJECTS RESEARCH.
“We’re From the Government and We’re Here to Help You” Privacy Initiatives at the U.S. Department of Education January 25, 2012 EDUCAUSE Webinar Kathleen.
HMIS Homeless Management Information System. MISSION To provide standardized and timely information to improve access to housing and services, and strengthen.
1 Office of the General Counsel FERPA  Family Educational Rights and Privacy Act (20 U.S.C § 1232g)
FERPA: WHAT YOU SHOULD KNOW ILASFAA April 18, 2008 Amy Perrin Director of Financial Aid Elgin Community College.
Family Educational Rights and Privacy Act What you need to know...
Statistical database security Special purpose: used only for statistical computations. General purpose: used with normal queries (and updates) as well.
FERPA and IRB: Implications for Testing Centers Judith W. Grant, Ph.D.,CIP NCTA Conference San Antonio, Texas August 6, 2009.
2/16/2010 The Family Educational Records and Privacy Act.
FERPA The Family Educational Rights and Privacy Act.
FERPA 2008 New regulations enact updates from over a decade of interpretations.
1 FERPA and Student Privacy in Records of University Research ECURE March 1, 2005 Richard Rainsberger, Ph.D. Consultant, Education Records Law and Privacy.
FERPA Overview for CANR Business Managers Rob Kent, MSU Assistant General Counsel October 7, 2014.
The Family Educational Rights and Privacy Act (FERPA) The Importance of Protecting Student Records This session will help you better understand the law.
What is personally identifiable information (PII)? KDE Employee Training Data Security Video Series 1 of 3 October 2014.
Data Privacy: Third Parties, Vendors, & Nonprofits Baron Rodriguez (PTAC), Michael Hawes (DoED), & Mike Tassey (PTAC)
1 The New York State Education Department New York State’s Student Reporting and Accountability System.
School Law Presentation Amy Ellis 4/19/12. Family Education Rights & Privacy Act (also called the Buckley Amendment) A federal statutory law enacted by.
8/28/2015 The Family Educational Rights and Privacy Act (FERPA)  Also known as the Buckley Amendment.  Statute: 20 U.S.C. 1232g; Regulations: 34 CFR.
FAMIS CONFERENCE Mari M. Presley, Assistant General Counsel Florida Department of Education June 14, 2011.
FERPA Family Educational Rights and Privacy Act and Rebecca Macon Registrar University of Georgia Presentation for GASFAA October.
FERPA at The Catholic University of America Presented by Laura Jacobs Anderson Associate Registrar Office of Enrollment Services.
Overview of 2002 CIPSEA: Methods to Protect Confidential Tabular Data Amrut Champaneri, Ph.D. U.S. Department of Transportation Bureau of Transportation.
The Application of the Concept of Uniqueness for Creating Public Use Microdata Files Jay J. Kim, U.S. National Center for Health Statistics Dong M. Jeong,
A Parent’s Guide to Understanding the State Accountability Workbook.
U.S. Department of Education Privacy Initiatives Kathleen M. Styles Chief Privacy Officer U.S. Department of Education April 18, 2011.
Confidentiality and Security Issues in ART & MTCT Clinical Monitoring Systems Meade Morgan and Xen Santas Informatics Team Surveillance and Infrastructure.
Health information that does not identify an individual and with respect to which there is no reasonable basis to believe that the information can be.
Confidentiality Issues with “Small Cell” Data Michael C. Samuel, DrPH STD Control Branch California Department of Public Health 2008 National STD Prevention.
{ FERPA Family Educational Rights and Privacy Act 2012 Revised May 2013.
Mississippi Department of Education FERPA August 29, 2012 Raina Anderson Lee Special Assistant Attorney General Counsel for the MS Dept. of Education.
Disclosure Control in Practice: issues and approaches Andy Sutherland Health and Social Care Information Centre.
Accessing and Reporting State Student Achievement Data for GPRA Purposes Amy A. Germuth, Ph.D. Compass Consulting Group, LLC.
FERPA 101 Student Records: Institutional Responsibility and Student Rights What Every University Employee Should Know Prepared by the Office of Academic.
Family Educational Rights and Privacy Act. From the moment a child enters the school system, sensitive information is collected about the child (and even.
FERPA: What you Need to Know The Family Educational Rights and Privacy Act & SEI.
NEW FERPA REGULATIONS: ARE YOU IN COMPLIANCE? Presented by Cristi Millard.
Privacy and Confidentiality. Definitions n Privacy - having control over the extent, timing, and circumstances of sharing oneself (physically, behaviorally,
FERPA Regulation Changes Effective December 2008 Presented by Karen Schultz University Registrar.
1 The New York State Education Department New York State’s Student Data Collection and Reporting System.
FAMIS CONFERENCE Mari M. Presley, Assistant General Counsel Florida Department of Education June 12, 2012.
June 24, 2003 Health Communications Progress Review Focus Area 11.
U.S. Department of Education Safeguarding Student Privacy Melanie Muenzer U.S. Department of Education Chief of Staff Office of Planning, Evaluation, and.
Creating Open Data whilst maintaining confidentiality Philip Lowthian, Caroline Tudor Office for National Statistics 1.
SPECIAL EDUCATION A REVIEW OF:  CHILD FIND/ SPED PROCESS  FERPA AND CONFIDENTIALITY  LENGTH OF SCHOOL DAY.
Centers for Disease Control and Prevention National Center for Health Statistics Elizabeth Arias, Ph.D. Mortality Statistics Branch Division of Vital Statistics.
The Review of the Dissemination of Health Statistics Carole Abrahams Office for National Statistics.
2012 SLDS P-20W Best Practice Conference 1 A GGREGATE R EPORTING AND D ATA D ISCLOSURE A VOIDANCE T ECHNIQUES Monday, October 29,2012 Kim Nesmith, Louisiana.
1 Confidentiality and Data Access Committee Jacob Bournazian, Chair Energy Information Administration BTS Confidentiality Seminar Series June 11, 2003.
Sharing Information (FERPA) FY07 REMS Initial Grantee Meeting December 5, 2007, San Diego, CA U.S. Department of Education, Office of Safe and Drug-Free.
FERPA for the Financial Aid Office NCASFAA Fall Conference November 2012.
TASFAA 2016 Legacy of Leadership. TASFAA 2016 Legacy of Leadership Family Educational Rights and Privacy Act (FERPA) An Overview Molly Thompson Associate.
Welcome to Workforce 3 One U.S. Department of Labor Employment and Training Administration Webinar Date: Thursday, October 23, 2014 Presented by: Division.
Denise Chrysler, JD Director, Mid-States Region
Tomball Independent School District Annual Confidentiality Training
Student Data Privacy and Security
Obligations of Educational Agencies: Parents’ Bill of Rights
SPECIAL EDUCATION A REVIEW OF: CHILD FIND/ SPED PROCESS
READ Act Data Collection Spring 2018
Darrin Rooker, MS NYSFAAA President
SPECIAL EDUCATION REQUIRED TRAINING
Protecting Student Data/ Financial Aid Data Sharing
New Recruiter Training: MSIX: Migrant Student Information Exchange NYS Migrant Education- Identification and Recruitment.
FERPA Basics This video will cover the basics of FERPA.
Protecting Student Data
Presentation transcript:

Protection of Personally Identifiable Information through Disclosure Avoidance Techniques Michael Hawes Statistical Privacy Advisor U.S. Department of Education Baron Rodriguez Director Privacy Technical Assistance Center February 16, th Annual Management Information Systems Conference San Diego, CA

Presentation Overview  Family Educational Rights and Privacy Act (FERPA)  Disclosure Avoidance Primer  ED’s History with Disclosure Avoidance  ED’s Current Thinking  Moving Forward  Questions and Discussion 2

Family Educational Rights and Privacy Act (FERPA) Definitions and Requirements Photo(s) are stock photos. Release for web use of all photos on file.

Confidentiality under FERPA  Protects personally identifiable information (PII) from education records from unauthorized disclosure  Requirement for written consent before sharing PII  Exceptions from the consent requirement for: – “Studies” – “Audits and Evaluations” – Health and Safety emergencies – And others purposes as specified in §

Personally Identifiable Information (PII)  Name  Name of parents or other family members  Address  Personal identifier (e.g., SSN, Student ID#)  Other indirect identifiers (e.g., date or place of birth)  “Other information that, alone or in combination, is linked or linkable to a specific student that would allow a reasonable person in the school community, who does not have personal knowledge of the relevant circumstances, to identify the student with reasonable certainty.” (34 CFR § 99.3) 5

Reporting vs. Privacy  Department of Education regulations require reporting on a number of issues, often broken down across numerous sub-groups, including: Gender Race/Ethnicity Disability Status Limited English Proficiency Migrant Status Economically Disadvantaged Students  BUT, slicing the data this many ways increases the risks of disclosure, and the regulations also require states to “ implement appropriate strategies to protect the privacy of individual students… ” (§200.7) 6

How States are Doing It # of States 7

# Tested Basic (and above) Proficient (and above) Advanced Male %59%5% Female 38 92%66%11% AIAN 1 *** Black 37 92%43%5% Hispanic %75%8% Asian 4 *** White %81%5% All Students 75 96%63%8% Example: School Performance Data Sunshine Elementary 3 rd Grade Class (Anywhere, U.S.A.) 8

# Tested Basic (and above) Proficient (and above) Advanced Male 37 (37) 100%(22) 59%(2) 5% Female 38 (35) 92%(25) 66%(4) 11% AIAN 1 *** Black 37 (34) 92%(16) 43%(2) 5% Hispanic 12 (12) 100%(9) 75%(1) 8% Asian 4 *** White 21 (21) 100%(17) 81%(1) 5% All Students 75 (72) 96%(47) 63%(6) 8% For each subgroup (row) multiply the percent by the # Tested to get the number of students in that category Example: School Performance Data Sunshine Elementary 3 rd Grade Class (Anywhere, U.S.A.) 9

# Tested Basic (and above) Proficient (and above) Advanced Male 37 (37) 100%(22) 59%(2) 5% Female 38 (35) 92%(25) 66%(4) 11% AIAN 1 (1) * (0-1) * Black 37 (34) 92%(16) 43%(2) 5% Hispanic 12 (12) 100%(9) 75%(1) 8% Asian 4 (4) * (1-2) * White 21 (21) 100%(17) 81%(1) 5% All Students 75 (72) 96%(47) 63%(6) 8% Calculate the suppressed subgroups by subtracting the remaining subgroup totals from the “All Students” totals Example: School Performance Data Sunshine Elementary 3 rd Grade Class (Anywhere, U.S.A.) 10

# TestedBelow Basic Basic (and above) Proficient (and above) Advanced Male 37 0 (37) 100%(22) 59%(2) 5% Female 38 3 (35) 92%(25) 66%(4) 11% AIAN 1 0 (1) * (0-1) * Black 37 3 (34) 92%(16) 43%(2) 5% Hispanic 12 0 (12) 100%(9) 75%(1) 8% Asian 4 0 (4) * (1-2) * White 21 0 (21) 100%(17) 81%(1) 5% All Students 75 3 (72) 96%(47) 63%(6) 8% Calculate the unreported outcome by subtracting the “Good” totals from the # Tested Example: School Performance Data Sunshine Elementary 3 rd Grade Class (Anywhere, U.S.A.) 11

But what is a disclosure anyway? ? 12 Photo(s) are stock photos. Release for web use of all photos on file.

Disclosure Avoidance Primer (aren’t you glad you had coffee this morning?) Photo(s) are stock photos. Release for web use of all photos on file.

It’s all about risk “The release of any data usually entails at least some element of risk. A decision to eliminate all risk of disclosure would curtail [data] releases drastically, if not completely. Thus, for any proposed release of [data] the acceptability of the level of risk of disclosure must be evaluated.” Federal Committee on Statistical Methodology, “Statistical Working Paper #2” 14 Photo(s) are stock photos. Release for web use of all photos on file.

3 Basic Flavors of Disclosure Avoidance  Suppression  Blurring  Perturbation 15

Suppression Definition: Removing data to prevent the identification of individuals in small cells or with unique characteristics Examples:  Cell Suppression  Row Suppression  Sampling Effect on Data Utility:  Results in very little data being produced for small populations  Requires suppression of additional, non-sensitive data (e.g., complementary suppression) Residual Risk of Disclosure:  Suppression can be difficult to perform correctly (especially for large multi-dimensional tables)  If additional data is available elsewhere, the suppressed data may be re-calculated. 16

Blurring Definition: Reducing the precision of data that is presented to reduce the certainty of identification. Examples:  Aggregation  Percents  Ranges  Top/Bottom-Coding  Rounding Effect on Data Utility:  Users cannot make inferences about small changes in the data  Reduces the ability to perform time-series or cross- case analysis Residual Risk of Disclosure:  Generally low risk, but if row/column totals are published (or available elsewhere), then it may be possible to calculate the actual values of sensitive cells 17

Perturbation Definition: Making small changes to the data to prevent identification of individuals from unique or rare characteristics Examples:  Data Swapping  Noise  Synthetic Data Effect on Data Utility:  Can minimize loss of utility compared to other methods  Seen as inappropriate for program data because it reduces the transparency and credibility of the data, which can have enforcement and regulatory implications Residual Risk of Disclosure:  If someone has access to some (e.g., a single state’s) original data, they may be able to reverse-engineer the perturbation rules used to alter the rest of the data 18

The U.S. Department of Education’s History with Disclosure Avoidance How we got where we are today… Photo(s) are stock photos. Release for web use of all photos on file.

Recent Developments in Disclosure Avoidance at ED  State Workbooks  School and LEA level data  Reactions from the field  Technical Brief 3 20

ED’s Current Thinking on Disclosure Avoidance Emerging (but still unofficial) views taking shape at ED

Emerging Views  Perturbation and transparency  Non-Trivial distinction between 0s and 1s  Exceptions for publishing 100% in certain cases  Who is a “reasonable person in the school community?” 22

Moving Forward? Where do we go from here?

Moving Forward  Data Release Working Group  (Proposed) Formation of a Disclosure Review Board  Guidance for the field Our Goal: Publish as much usable data as we can AND protect privacy 24

Questions and Discussion Baron Rodriguez Director Privacy Technical Assistance Center Michael Hawes Statistical Privacy Advisor U.S. Department of Education TEL: (855) TEL: (202) FAX: (855) FAX: (202) Website: 25

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.