Presentation is loading. Please wait.

Presentation is loading. Please wait.

Student Data Privacy and Security

Published byDaisy Cook Modified over 6 years ago

Similar presentations

Presentation on theme: "Student Data Privacy and Security"— Presentation transcript:

1 Student Data Privacy and Security
A Team Approach Levette Williams and Chris Shealy

2 The Student Education Record
Demographic Data Discipline Data Program Participation Enrollment Data IEP Data Student Schedules Georgia Department of Education

3 Student Data Privacy Laws
FERPA- Family Education Rights Privacy Act FERPA sets forth the basic privacy requirements schools and districts must follow to ensure protection of student data from unauthorized access as well as provide for parental access to their student’s data, request modification of the data, and parental consent before data are released. COPPA- Children’s Online Privacy Protection Act COPPA imposes certain requirements on operators of websites or online services directed to children under 13 years of age, and on operators of other websites or online services that have actual knowledge that they are collecting personal information online from a child under 13 years of age. PPRA – Protection of Pupil Rights Amendment Requires that schools allow parents to see any instructional or survey materials that will be used with their children, and it requires parental consent before minor student can participate in a survey that reveals certain types of information including but not limited to political affiliations, mental health, sexual behaviors, or income Georgia Department of Education Federal Laws

4 Student Data Privacy Laws
IDEA – Individuals with Disabilities in Education Act Designed to protect students with disabilities and also includes provisions addressing student privacy. Under IDEA, when a child with disabilities reaches the age of 18 and becomes and “eligible” student under FERPA, an education agency must continue to send notifications to the parents in addition to the eligible student NSLA- National School Lunch Act NSLA governs the disclosures of information about a student’s FRL status. Georgia Department of Education

5 Georgia Department of Education
In the News - Data Breach Chicago Public Schools exposed confidential student information – again! The breach included special education students’ names, identification numbers and other information that’s supposed to be kept confidential but was viewable in payment records that were posted on CPS’ website. Georgia Department of Education

6 Georgia Department of Education
In the News – Data Breach Laptop containing high school students’ transcripts with SSN stolen in home burglary Confidential information belonging to Hanks High School students might have been compromised after a laptop containing transcripts of every student at the school was stolen. A Hanks counselor downloaded and saved transcripts of all 1,700 students onto a personal laptop as part of her job, but the laptop and other items were stolen from her home on Feb. 18. Transcripts contain students’ birth dates, Social Security numbers, home addresses and parents’ or guardians’ names Georgia Department of Education

7 Complaints Filed with USDOE
Number of complaints received – 12,000-15,000 annually Number of resulting cases annually Penalty for violating FERPA Loss of all federal funds Georgia Department of Education

8 Data Privacy Survey Results
Q1: Does your district require district-level and school-level staff attend student data privacy training? Respondents: Skipped: 0

9 Data Privacy Survey Results
Q2: Are all staff who have access to student level data required to attend student data privacy training? (This question pertains to staff at schools and the district office.) Respondents: Skipped: 0

10 Georgia Department of Education
Things To Do Staff training Privacy Technical Assistance Center (USDOE online) Data Conference (August) Privacy Director (RESA online) Local Board Attorney Internal Staff Georgia Department of Education

11 Georgia Department of Education

12 Student Data Privacy, Accessibility and Transparency Act
As of July 1, 2016 Responsibilities of (GaDOE) Responsibilities of GaDOE to LEA Create model policies Responsibilities of LEA Implement policies Responsibilities of Operators (vendors) Georgia Department of Education

13 Annual Notification Policy
SUMMARY The Student Data Privacy, Accessibility, and Transparency Act of Georgia and the Family Educational Rights and Privacy Act (FERPA) require local education agencies who receive federal funds to notify parents and eligible students of their rights under FERPA. A parent is defined as a natural parent, as guardian, or an individual acting as a parent in the absence of a parent or guardian. An eligible student is defined as a student who has reached 18 years of age or is attending an institution of postsecondary education. PURPOSE O.C.G.A. § Role of department section (7) directs the Georgia Department of Education to develop model policies and procedures for local education agencies to ensure the provision of at least annual notifications to eligible students and parents or guardians regarding student privacy rights under federal and state law. SCOPE Each local educational agency shall annually notify parents of students currently in attendance, or eligible students currently in attendance, of their rights under FERPA. Georgia Department of Education

14 Annual Notification Policy
The annual notification must inform parents or eligible students that they have the right to: Inspect and review the student’s education records Seek amendment of the student’s education records that the parent or eligible student believes to be inaccurate, misleading, or otherwise in violation of the student’s privacy rights Consent to disclosures of personally identifiable information contained in the student’s education record File a complaint with the USDOE concerning alleged failures by the educational agency or institution to comply with the requirements of FERPA The notice must include all of the following: The procedure for exercising the right to inspect and review education records The procedure for requesting amendment of records An educational agency may provide this notice by any means that are reasonably likely to inform the parents or eligible student of their rights. An educational agency shall effectively notify parents or eligible students who are disabled. An educational agency shall effectively notify parents who have a primary or home language other than English. Georgia Department of Education

15 Georgia Department of Education
Model Policies and Forms Created for Local Education Agencies Georgia Department of Education

16 PARENT/ELIGIBLE STUDENT DATA PRIVACY COMPLAINT POLICY
Summary The Student Data Privacy, Accessibility, and Transparency Act is a Georgia state law that is designed to ensure student data is kept private and secure from unauthorized access. Any parent or eligible student (“Complainant”) may file a complaint with the local school system if that individual believes and alleges that a possible violation of rights under the federal or state privacy and security laws has occurred. A parent is defined as a natural parent, as guardian, or an individual acting as a parent in the absence of a parent or guardian. An eligible student is defined as a student who has reached 18 years of age or is attending an institution of postsecondary education. PURPOSE O.C.G.A. § Parental and student review of education record; model policies subsection (g)(1) directs the Georgia Department of Education to develop model policies and procedures for a parent or eligible student to file a complaint with an LEA regarding a possible violation of rights under federal or state student data privacy and security laws. SCOPE The purpose of this policy is to ensure that parents or eligible students are provided a formal process to file a complaint with a local school system regarding a possible violation and to set forth the official process that the local school system must use to handle the complaint. The complaint must allege a violation that occurred not more than one (1) year prior to the date that the complaint is received. Complaint policy must be adopted by LEA by January 2017. Georgia Department of Education

17 PARENT/ELIGIBLE STUDENT DATA PRIVACY COMPLAINT POLICY
Local school systems must provide the Parent/Eligible Student Complaint form to the Complainant within 3 business days of receiving the request. The complaint form may also be made available on the local school system’s website. See Parent/Eligible Student Complaint Form. Each local school system shall designate at least one individual with the responsibility to respond to complaints filed by parents or eligible students. A written response must be provided to Complainant within 10 business days of receipt of complaint. The Complainant may file an appeal with the local school superintendent within 10 business days of receiving written response from local school system. Parents or eligible student may file an appeal for a final decision to the local board of education within 10 business days of receipt of written response from local school system. Local boards of education must render a decision within 10 business days of receiving an appeal. Complaint policy must be adopted by LEA by January 2017. Georgia Department of Education

18 Complaint policy must be adopted by LEA by January 2017.
Model Policies and Forms Created for Local Education Agencies Complaint policy must be adopted by LEA by January 2017. Georgia Department of Education

19 Sample Policies

20 Georgia Department of Education
Data Security Georgia Department of Education

21 What happened at the DOE this year?

22 Georgia Department of Education

23 Training your staff is the number one defense
Georgia Department of Education

24

25 Georgia Department of Education

Download ppt "Student Data Privacy and Security"

Similar presentations

Procedural Safeguards

Procedural Safeguards
Family Educational Rights and Privacy Act What you should know about FERPA.

Family Educational Rights and Privacy Act What you should know about FERPA.
The Family Educational Rights & Privacy Act (FERPA) & other statutes related to student information.

The Family Educational Rights & Privacy Act (FERPA) & other statutes related to student information.
Confidentiality Tutorial Family Education Rights and Privacy Act (FERPA)

Confidentiality Tutorial Family Education Rights and Privacy Act (FERPA)
Protection of privacy for all Students!

Protection of privacy for all Students!
FERPA for Students What Every MSU Student Should Know Prepared by the Office of the Registrar.

FERPA for Students What Every MSU Student Should Know Prepared by the Office of the Registrar.
What are my child’s rights under the Individuals with Disabilities Education Act? Randy Chapman The Legal Center for People with Disabilities and Older.

What are my child’s rights under the Individuals with Disabilities Education Act? Randy Chapman The Legal Center for People with Disabilities and Older.
FERPA What You Need to Know as a Wayne State Student Prepared by the Office of the Registrar.

FERPA What You Need to Know as a Wayne State Student Prepared by the Office of the Registrar.
Family Educational Rights and Privacy Act What you need to know...

Family Educational Rights and Privacy Act What you need to know...
Family Education Rights and Privacy Act Collection, Maintenance, and Disclosure of Student Data West Virginia State Board Policy 4350 Office of Institutional.

Family Education Rights and Privacy Act Collection, Maintenance, and Disclosure of Student Data West Virginia State Board Policy 4350 Office of Institutional.
The Family Educational Rights and Privacy Act (FERPA) The Importance of Protecting Student Records This session will help you better understand the law.

The Family Educational Rights and Privacy Act (FERPA) The Importance of Protecting Student Records This session will help you better understand the law.
Office of Safe and Drug-Free Schools Advisory Committee Meeting February 21, 2007.

Office of Safe and Drug-Free Schools Advisory Committee Meeting February 21, 2007.
PARENTAL INVOLVEMENT. 11/10/05 22 Parent Involvement2 A parent is… (300.30)  Natural or adoptive parent of a child  A foster parent  A guardian but.

PARENTAL INVOLVEMENT. 11/10/05 22 Parent Involvement2 A parent is… (300.30)  Natural or adoptive parent of a child  A foster parent  A guardian but.
Section 504 of the Rehabilitation Act of 1973 Las Cruces Public Schools Technical Assistance Training 2010-2010 Department of Learning, Teaching and Research.

Section 504 of the Rehabilitation Act of 1973 Las Cruces Public Schools Technical Assistance Training Department of Learning, Teaching and Research.
8/28/2015 The Family Educational Rights and Privacy Act (FERPA)  Also known as the Buckley Amendment.  Statute: 20 U.S.C. 1232g; Regulations: 34 CFR.

8/28/2015 The Family Educational Rights and Privacy Act (FERPA)  Also known as the Buckley Amendment.  Statute: 20 U.S.C. 1232g; Regulations: 34 CFR.
FERPA Family Educational Rights and Privacy Act and Rebecca Macon Registrar University of Georgia Presentation for GASFAA October.

FERPA Family Educational Rights and Privacy Act and Rebecca Macon Registrar University of Georgia Presentation for GASFAA October.
Chapter 222 of the Acts of 2012, An Act Relative to Students Access to Educational Services and Exclusion from School.

Chapter 222 of the Acts of 2012, An Act Relative to Students Access to Educational Services and Exclusion from School.
Confidentiality and Public Information Act LISD Special Education Department Training SY 2012-2013.

Confidentiality and Public Information Act LISD Special Education Department Training SY
707 KAR 1:360 Confidentiality of Information. Section 1: Access Rights 1) An LEA shall permit a parent to inspect and review any education records relating.

707 KAR 1:360 Confidentiality of Information. Section 1: Access Rights 1) An LEA shall permit a parent to inspect and review any education records relating.
F.E.R.P.A. Family Educational Rights and Privacy Act Cindy Johnson–Taylor, Ph.D. Mary Martin, Ed.D. Mark Mitchell, Ed.D. Linda Winter, Ph.D. Winthrop University.

F.E.R.P.A. Family Educational Rights and Privacy Act Cindy Johnson–Taylor, Ph.D. Mary Martin, Ed.D. Mark Mitchell, Ed.D. Linda Winter, Ph.D. Winthrop University.

Similar presentations

Ads by Google