1 PARCC Data Privacy & Security Policy December 2013.

Slides:

Advertisements

Similar presentations

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Advertisements

HIPAA Basics Brian Fleetham Dickinson Wright PLLC.

National Science Foundation Division of Science Resources Statistics May The Confidential Information Protection and Statistical Efficiency Act.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

ITEC 6324 Health Insurance Portability and Accountability (HIPAA) Act of 1996 Instructor: Dr. E. Crowley Name: Victor Wong Date: 2 Sept

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.

Annual Army FOIA/Privacy/Records Management Conference Privacy Leadership – Accountability - Action presented by Samuel P. Jenkins, Director Defense Privacy.

Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.

Informed Consent and HIPAA Tim Noe Coordinating Center.

Data Privacy: Third Parties, Vendors, & Nonprofits Baron Rodriguez (PTAC), Michael Hawes (DoED), & Mike Tassey (PTAC)

HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.

ELECTRONIC MEDICAL RECORDS By Group 5 members: Kinal Patel David A. Ronca Tolulope Oke.

Anglican Province of Canada Privacy Policy. Commitment to Privacy The Privacy Policy, including the Web Privacy Statement, is the Anglican Province of.

CUI Statistical: Collaborative Efforts of Federal Statistical Agencies Eve Powell-Griner National Center for Health Statistics.

HIPAA PRIVACY AND SECURITY AWARENESS.

1 Updates to Texas Administrative Code 1TAC 206 Jeff Kline, Statewide Accessibility Coordinator Texas Department of Information Resources February 8, 2012.

Betsy L. Sirk Section 508 Coordinator NASA Goddard Space Flight Center

Privacy and Security of Protected Health Information NorthPoint Health & Wellness Center 2011.

U.S. Department of Education Privacy Initiatives Kathleen M. Styles Chief Privacy Officer U.S. Department of Education April 18, 2011.

Privacy and Security Laws for Health Care Organizations Presented by Robert J. Scott Scott & Scott, LLP

Copyright ©2011 by Pearson Education, Inc. Upper Saddle River, New Jersey All rights reserved. Health Information Technology and Management Richard.

Student Confidentiality: The FERPA/HIPAA Facts AISD Policy Student Records AISD Procedure AP. 11.

Texas Regional Entity Update Sam Jones Interim CEO and President Board of Directors July 18, 2006.

Federated or Not: Secure Identity Management Janemarie Duh Identity Management Systems Architect Chair, Security Working Group ITS, Lafayette College.

Utilizing the CMS Security Risk Assessment Tool Liz Hansen, PCMH CEC, ICD-10 PMC Special Consultant, GA-HITEC Member Manager, GaHIN

HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.

1 Information Sharing Environment (ISE) Privacy Guidelines Jane Horvath Chief Privacy and Civil Liberties Officer.

Greater Toronto Hockey League The Implementation of PIPEDA and Amateur Sports – A Case Study.

LeToia Crozier, Esq., CHC Vice President, Compliance & Regulatory Affairs Corey Wilson Director of Technical Services & Security Officer Interactive Think.

NESTOA September 20, 2011 Safeguards Program Briefing.

Organizational and Legal Issues -- Developing organization and governance models for HIE Day 2 -Track 5 – SECOND SESSION – PRIVACY AND SECURITY CONNECTING.

The right item, right place, right time. DLA Privacy Act Code of Fair Information Principles.

Safeguarding Research Data Policy and Implementation Challenges Miguel Soldi February 24, 2006 THE UNIVERSITY OF TEXAS SYSTEM.

FleetBoston Financial HIPAA Privacy Compliance Agnes Bundy Scanlan Managing Director and Chief Privacy Officer FleetBoston Financial.

Policies for Information Sharing April 10, 2006 Mark Frisse, MD, MBA, MSc Marcy Wilder, JD Janlori Goldman, JD Joseph Heyman, MD.

UMBC POLICY ON ESH MANAGEMENT & ENFORCEMENT UMBC Policy #VI

Federal Trade Commission U.S. Rules on Privacy and Data Security Organization for International Investment General Counsel Conference October 16, 2009.

Copyright ©2014 by Saunders, an imprint of Elsevier Inc. All rights reserved 1 Chapter 02 Compliance, Privacy, Fraud, and Abuse in Insurance Billing Insurance.

Tad and Terry Legal Issues in ILP. 28 CFR Part 23 The federal rule that governs or provides guidance for these issues. § 23.3 Applicability: These policy.

Twelve Guiding Principles for the Regulation of Surveillance Camera Systems Presented by: Alastair Thomas Date: 23 rd October 2013.

Energize Your Workflow! ©2006 Merge eMed. All Rights Reserved User Group Meeting “Energize Your Workflow” May 7-9, Security.

U.S. Department of Education Safeguarding Student Privacy Melanie Muenzer U.S. Department of Education Chief of Staff Office of Planning, Evaluation, and.

Welcome….!!! CORPORATE COMPLIANCE PROGRAM Presented by The Office of Corporate Integrity 1.

Staying ahead of the storm: know your role in information security before a crisis hits Jason Testart, IST Karen Jack, Secretariat.

Privacy Act United States Army (Managerial Training)

Functioning as a Business Associate Under HIPAA William F. Tulloch Director, PCBA March 9, 2004.

DON Code of Privacy Act Fair Information Principles DON has devised a list of principles to be applied when handling Protected Personal Information (PPI).

Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.

Federal Information Security Management Act (F.I.S.M.A.) [ Justin Killian ]

IT Governance Purpose: Information technology is a catalyst for productivity, creativity and community that enhances learning opportunities in an environment.

Wisconsin Department of Health Services Purchase of Services Contract Guide Julie Anstett and Lucinda Champion Friday, May 6, 2016 Wisconsin Department.

Overview of Tampa Electric’s Compliance Program APPA Reliability Standards and Compliance Program January 10, 2007.

Junli M. Awit, RN.  Enacted by President Bill Clinton in 1996  Title I of HIPAA protects health insurance coverage for workers and their families when.

Nassau Association of School Technologists

Health Insurance Portability and Accountability Act of 1996

Data Security and Privacy Overview: NJDOE’s Approach to Cybersecurity

An Update on FERPA and Student Privacy

Obligations of Educational Agencies: Parents’ Bill of Rights

CIS 349 Possible Is Everything/tutorialrank.com

CIS 349 Education for Service/tutorialrank.com

Privacy & Access to Information

Data protection reform – update from the ICO

Lesson 1  7 Basic Components of an Effective Compliance Plan

EDGAR 201 Steven A. Spillan, Esq.

Making Your IRBs and Clinical Investigators HIPAA-Ready

GDPR PERSONDATAFORORDNINGEN I PRAKSIS

Student Data Privacy: National Trends and Wyoming’s Role

Schoolnet Data Protection Policies

Presentation transcript:

1 PARCC Data Privacy & Security Policy December 2013

Background 2 In August 2013, PARCC began work to draft consortium data privacy & security policy with support from legal counsel The PARCC Governing Board adopted the policy on December 5, 2013 Policy reflects the input of state chiefs, state assessment directors and other SEA staff, including state legal counsel

The PARCC consortium’s Data Privacy and Security Policy is designed to ensure that PARCC and any PARCC contractors: Only have access to personally identifiable student information for specific purposes authorized by states needed to carry out assessment programs Implement specific stringent policies and procedures that protect the security of data Limit access to personally identifiable student information to only those contractors who need it for specific purposes authorized by states Ensure compliance with federal privacy laws, including FERPA 3 Purpose of the Policy

States retain responsibility for and control over their data. No data will be shared with anyone – including the federal government – without the states’ express permission. States must give permission to PARCC and contractors in order for them to access any personally identifiable information – and only for specific purposes defined by states. The policies and requirements apply not just to PARCC but to its PARCC contractors. 4 Guiding Principles

Establishes the purposes for which states would disclose PII to PARCC or PARCC contractors Establishes physical, administrative, and technical safeguards for management and control of risks– and accountability for any breaches of security Sets basic privacy protections and limits on access to PII that states provide to PARCC or PARCC contractors, such as access rules and electronic data encryption requirements Sets guidelines for the enforcement of this policy by PARCC and PARCC states, including disciplinary actions 5 Major Provisions of Proposed Data Privacy & Security Policy