Both federal policies – FERPA and COPPA – presume that schools have the resources and knowledge to assess their own data security practices, to say nothing of their vendors. Emerging evidence says otherwise.
Posts tagged FERPA
Both FERPA and the COPPA Rule presume that schools have the resources and knowledge to assess their own data security practices, to say nothing of that of their vendors. Emerging evidence suggests that this presumption should be challenged. The FTC and ED can take affirmative action to improve the security with which schools and their vendors treat student data.
If there is an Achilles’ heel to a future of robust personalized learning for all K-12 students, it is the uneven attention to the cybersecurity risks facing school information technology assets and data. In this post, I offer emerging lessons about real and perceived information security issues facing schools from the data underlying the K-12 Cyber Incident Map.
According to an alarming new study, school districts are routinely sharing individual student data about discipline with colleges as part of the admissions process, and colleges are in turn using that data to deny admissions to students. With no empirical evidence to support the practice, a lack of written policy, and demonstrable harm to students, this practice must cease.
Advocates would have us believe that school districts are incapable of making responsible decisions about technology-related privacy and security issues affecting students. Even if they are correct about the current state of affairs – and they just might be – it doesn’t abdicate our responsibility to help schools and educators do better.