education new york online education new york online education new york online
NYS & NATIONAL Education Data Management & Information Policy
Today's Info Policy News
Weekly Archive
Information Policy
FERPA
Protecting your children's privacy: The Facts
Parents 4 Privacy
WHO'S WATCHING YOUR CHILDREN?
about
contact us
site map

Tweet This!:

Search

Protecting your children's privacy: The Facts

compiled by education new york online

Scroll down to read entries organized by topic alphabetically OR use the topic links at the right to jump to categories of interest.

Updated Friday November 13, 2015 09:47 AM

Applications

PRIVACY ON THE GO: RECOMMENDATIONS FOR THE MOBILE ECOSYSTEM
Date CapturedSaturday January 12, 2013 07:18 AM
Kamala D. Harris, Attorney General; California Department of Justice. Privacy on the Go recommends a “surprise minimization” approach. This approach means supplementing the general privacy policy with enhanced measures to alert users and give them control over data practices that are not related to an app’s basic functionality or that involve sensitive information

Big Data

"Big Data and the Future of Privacy"
Date CapturedMonday April 07, 2014 11:09 AM
EPIC comments to the White House on topic.

BMI: Body Mass Index

Applications for New Awards; Carol M. White Physical Education Program
Date CapturedWednesday March 21, 2012 04:55 PM
Federal Register/Vol. 76, No. 60/Tuesday, March 29, 2011/Notices

Child identity theft

A Better Start: Clearing Up Credit Records for California Foster Children
Date CapturedTuesday September 13, 2011 01:16 PM
This report summarizes the result of the project team’s work on behalf of over 2,110 foster children in Los Angeles County, and it also recommends new procedures for use in helping this vulnerable population statewide. Key Findings of the Pilot Project • The project team successfully cleared all negative items from the credit reports of 104 foster children. • These 104 children (5% of the pilot project sample) had 247 separate accounts reported in their names, as the result of errors or identity theft. • The average account balance was $1,811, with the largest being a home loan of over $200,000. • The accounts found were two to three years old, opened when the child was 14 years old on average. • 12% of the children had records loosely linked to them by Social Security number only, which while not affecting their credit ratings could nevertheless pose problems for them in the future.
FTC "STOLEN FUTURES" WEBCAST Session Two - FAMILIAL IDENTITY THEFT - July 12, 2011
Date CapturedSunday September 11, 2011 12:04 AM
WEBCAST ON CHILD IDENTITY THEFT. DISCUSSES MOST AT RISK STUDENTS. Session 2 Linda Foley is the founder of the Identity Theft Resource Center, a nationwide nonprofit, victim-services advocacy, and consumer-education program based in San Diego, California. Russell Butler is Executive Director of the Maryland Crime Victims Resource Center, which provides criminal justice information and education, support services, therapeutic individual, family, and group counseling, and legal information, referrals, and representation to victims of crime. Theresa Ronnebaum is the Identity Theft Program Specialist for the Florida Attorney General's office with over 15 years experience in victim advocacy.
PREPARED STATEMENT OF THE FEDERAL TRADE COMMISSION on CHILD IDENTITY THEFT
Date CapturedFriday September 02, 2011 09:38 PM
PREPARED STATEMENT OF THE FEDERAL TRADE COMMISSION Before the SUBCOMMITTEE ON SOCIAL SECURITY of the HOUSE COMMITTEE ON WAYS AND MEANS on Child Identity Theft Field Hearing Plano, Texas September 1, 2011; EXCERPT: A. The Child Identity Theft Forum Discussions [They noted that identity thieves often steal children’s information from schools, businesses, and government agencies.]
Kindergarten Through 12 Grade Schools’ Collection and Use of Social Security Numbers (A-08-10-11057)
Date CapturedThursday December 23, 2010 09:53 AM
OFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION - Despite the potential risks associated with using SSNs as primary student identifiers, many K-12 schools continue this practice. While we recognize that SSA cannot prohibit States or K-12 schools from collecting and using SSNs as student identifiers or for other purposes, we believe SSA can help reduce the threat of identity theft and SSN misuse by encouraging States and K-12 schools to reduce unnecessary collection of SSNs and improve protections and safeguards when collected.

Cloud Computing

IN THE CLOUD
Date CapturedWednesday February 06, 2013 02:14 PM
News & policy about the CLOUD. Check paper archives. Updated regularly.
FERPA and the Cloud: What FERPA Can Learn from HIPAA
Date CapturedTuesday December 18, 2012 07:01 AM
SOLOVE: Parents need to look at what their schools are doing about student privacy and speak up, because the law isn’t protecting their children’s privacy. School officials who want to develop a more meaningful and robust protection of privacy should talk to government officials who are tasked with complying with HIPAA. They can learn a lot from studying HIPAA and following some of its requirements. Congress should remake FERPA more in the model of HIPAA. If Congress won’t act, state legislatures should pass better education privacy laws. Because FERPA does not provide adequate oversight and enforcement of cloud computing providers, schools must be especially aggressive and assume the responsibility. Otherwise, their students’ data will not be adequately protected. School officials shouldn’t assume that the law is providing regulation of cloud computing providers and that they need not worry. The law isn’t, so right now the schools need to be especially vigilant.
Frequently Asked Questions—Cloud Computing
Date CapturedMonday September 24, 2012 10:25 AM
FERPA does not prohibit the use of cloud computing solutions for the purpose of hosting education records; rather, FERPA requires States to use reasonable methods to ensure the security of their information technology (IT) solutions.

Common Core

FERPA, COMMON CORE STATE STANDARDS & DATA-SHARING
Date CapturedWednesday March 06, 2013 09:54 AM
Chairman Gates' GERM warfare
Date CapturedThursday August 16, 2012 11:37 AM
Kris Alman
CED Family Elements
Date CapturedWednesday May 02, 2012 08:28 PM
Family income & source
CEDS Elements Screen Shot
Date CapturedWednesday May 02, 2012 08:19 PM
Weeks of gestation, birthweight

Cómo proteger la información personal de su hijo en la escuela

FTC Alerta para Consumidores: Cómo proteger la información personal de su hijo en la escuela
Date CapturedSunday September 11, 2011 07:37 PM
Pregunte en la escuela de su hijo cuál es la política aplicable al directorio de información de los estudiantes. En el directorio de información de los estudiantes se pueden listar el nombre, domicilio, fecha de nacimiento, número de teléfono, domicilio de email y foto de su hijo. La ley FERPA establece que las escuelas deben notificar a los padres y tutores sus respectivas políticas aplicables al directorio de información de los estudiantes, y darle el derecho de optar por que no se suministre esa información a terceros. Es mejor que presente su solicitud por escrito y que guarde una copia para sus archivos. Si usted no ejerce su derecho de optar por que no se comparta la información de su hijo, los datos listados en el directorio de la escuela pueden estar a disposición no sólo de los compañeros de clase y personal de la escuela de su hijo, sino también del público en general.

Consent

Methodology of the Youth Risk Behavior Surveillance System 2013
Date CapturedSunday November 03, 2013 09:39 PM
The Youth Risk Behavior Surveillance System (YRBSS), established in 1991, monitors six categories of priority health-risk behaviors among youths and young adults: 1) behaviors that contribute to unintentional injuries and violence; 2) sexual behaviors that contribute to human immunodeficiency virus (HIV) infection, other sexually transmitted diseases, and unintended pregnancy; 3) tobacco use; 4) alcohol and other drug use; 5) unhealthy dietary behaviors; and 6) physical inactivity. In addition, YRBSS monitors the prevalence of obesity and asthma among this population. [Certain schools use active permission, meaning that parents must send back to the school a signed form indicating their approval before their child can participate. Other schools use passive permission, meaning that parents send back a signed form only if they do not want their child to participate in the survey.]
SafeGov 2012 National Data Privacy in Schools Survey
Date CapturedSunday May 26, 2013 07:31 PM

Consumer Protection

Data Brokers – Is Consumers’ Information Secure
Date CapturedFriday November 13, 2015 09:47 AM
Recorded: Subcommittee on Privacy, Technology and the Law Date: Tuesday, November 3, 2015 Time: 02:30 PM Location: Dirksen Senate Office Building 226 Presiding: Chairman Flake
Data Brokers – Is Consumers’ Information Secure
Date CapturedFriday November 13, 2015 09:27 AM
Ms. Pam Dixon; Executive Director -World Privacy Forum before Subcommittee on Privacy, Technology and the Law, Date: Tuesday, November 3, 2015; Time: 02:30 PM; Location: Dirksen Senate Office Building 226; Presiding: Chairman Flake

COPPA

16 C.F.R. Part 312: Children’s Online Privacy Protection Rule: Final Rule Amendments(COPPA)
Date CapturedWednesday December 19, 2012 01:15 PM
16 C.F.R. Part 312: Children’s Online Privacy Protection Rule: Final Rule Amendments – Consistent With the Requirements of the Children’s Online Privacy Protection Act – To Clarify the Scope of the Rule and Strengthen Its Protections For Children’s Personal Information
The Need for Privacy Protections: Perspectives from the Administration & FTC
Date CapturedTuesday May 29, 2012 09:08 AM
FTC May 9, 2012 testimony before the Committee on Commerce, Science & Transportation; US Senate

Current law & proposed legislation

APPENDIX A: FERPA Guidance for Reasonable Methods and Written Agreements
Date CapturedThursday January 05, 2012 05:57 PM
FERPA represents the floor for protecting [student] privacy, not the ceiling. PAGE A-5 Federal Register/Vol. 76, No. 232/Friday, December 2, 2011/Rules and Regulations.
DEPARTMENT OF EDUCATION 34 CFR Part 99 in the Federal Register (76 FR 19726)
Date CapturedMonday December 05, 2011 11:20 AM
SUMMARY: The Secretary of Education (Secretary) amends the regulations implementing section 444 of the General Education Provisions Act (GEPA), which is commonly referred to as the Family Educational Rights and Privacy Act (FERPA). These amendments are needed to ensure that the U.S. Department of Education (Department or we) continues to implement FERPA in a way that protects the privacy of education records while allowing for the effective use of data. Improved access to data will facilitate States’ ability to evaluate education programs, to ensure limited resources are invested effectively, to build upon what works and discard what does not, to increase accountability and transparency, and to contribute to a culture of innovation and continuous improvement in education.
NYS Assembly Bill A8474 same as Senate Bill 2357b
Date CapturedMonday September 05, 2011 10:16 AM
BILL NO A08474 Same as S 2357-B (Sponsor: Sen. Suzi Oppenheimer - passed Senate 62-0) ASSEMBLY SPONSOR Rosenthal (MS) COSPONSOR Nolan: A SCHOOL MAY NOT, EVEN WITH THE AFFIRMATIVE CONSENT OF THE PARENT OF THE STUDENT IN ATTENDANCE OR THE ELIGIBLE STUDENT IN ATTENDANCE, DISCLOSE PERSONALLY IDENTIFIABLE STUDENT INFORMATION FOR A COMMERCIAL, FOR-PROFIT ACTIVITY INCLUDING BUT NOT LIMITED TO USE FOR: (I) MARKETING PRODUCTS OR SERVICES; (II) SELLING PERSONALLY IDENTIFIABLE STUDENT INFORMATION FOR USE IN MARKETING PRODUCTS OR SERVICES; (III) CREATING OR CORRECTING AN INDIVIDUAL OR HOUSEHOLD PROFILE; (IV) COMPILATION OF A STUDENT LIST. DISCLOSABLE DIRECTORY INFORMATION (DDI) HEREAFTER REFERRED TO IN THIS SECTION AS "DIRECTORY INFORMATION", MEANS WITH RESPECT TO A STUDENT, THE STUDENT'S NAME; PHOTOGRAPH; AGE; MAJOR FIELD OF STUDY; GRADE LEVEL; ENROLLMENT STATUS (E.G., UNDERGRADUATE OR GRADUATE, FULL-TIME OR PART-TIME); DATES OF ATTENDANCE; PARTICIPATION IN OFFICIALLY RECOGNIZED ACTIVITIES AND SPORTS; WEIGHT AND HEIGHT OF MEMBERS OF ATHLETIC TEAMS; DEGREES, HONORS AND AWARDS RECEIVED; AND THE MOST RECENT EDUCATIONAL AGENCY OR INSTITUTION ATTENDED. (D) "PERSONALLY IDENTIFIABLE STUDENT INFORMATION (PISI)" SHALL INCLUDE DISCLOSABLE DIRECTORY INFORMATION, AND A STUDENT'S OR PARENT'S ADDRESS, TELEPHONE NUMBER, AND E-MAIL ADDRESS. A SCHOOL MAY DISCLOSE PERSONALLY IDENTIFIABLE STUDENT INFORMATION ONLY WITH THE AFFIRMATIVE CONSENT OF THE PARENT OF THE STUDENT IN ATTENDANCE OR THE ELIGIBLE STUDENT IN ATTENDANCE IN ACCORDANCE WITH THE PROCEDURE PROVIDED IN SUBDIVISION THREE OF THIS SECTION IF:
California AB.143
Date CapturedSaturday September 03, 2011 02:40 PM
INTRODUCED BY Assembly Member Fuentes; This bill would redefine directory information to no longer include a pupil's place of birth and to also include a pupil's e-mail address.
TITLE 20 > CHAPTER 31 > SUBCHAPTER III > Part 4 > § 1232g
Date CapturedTuesday March 15, 2011 12:47 PM
FERPA statute regarding directory information - note PICTURE and E-MAIL NOT in statute. US ED added through regulations -- they were not added by Congress: 5)(A) For the purposes of this section the term “directory information” relating to a student includes the following: the student’s name, address, telephone listing, date and place of birth, major field of study, participation in officially recognized activities and sports, weight and height of members of athletic teams, dates of attendance, degrees and awards received, and the most recent previous educational agency or institution attended by the student.
OHIO 3319.321 Confidentiality
Date CapturedThursday March 10, 2011 02:40 PM
Ohio Revised Code » Title [33] XXXIII EDUCATION (A) No person shall release, or permit access to, the directory information concerning any students attending a public school to any person or group for use in a profit-making plan or activity. Notwithstanding division (B)(4) of section 149.43 of the Revised Code, a person may require disclosure of the requestor’s identity or the intended use of the directory information concerning any students attending a public school to ascertain whether the directory information is for use in a profit-making plan or activity.
Plano ISD: Redefining the student directory
Date CapturedFriday October 30, 2009 10:30 AM
[If the changes are approved, Plano ISD couldn't, without consent from the parents, print a student's address, telephone number or e-mail address in any district publication. Some school districts -- and I'm not sure about Plano -- sell directory information to third parties as a money-making operation. Companies, such as Coca-Cola or Citi Bank, could buy the directories and market products to students.] NOTE: CHANGES WERE APPROVED

Data Broker

Data Brokers – Is Consumers’ Information Secure
Date CapturedFriday November 13, 2015 09:47 AM
Recorded: Subcommittee on Privacy, Technology and the Law Date: Tuesday, November 3, 2015 Time: 02:30 PM Location: Dirksen Senate Office Building 226 Presiding: Chairman Flake
What Information Do Data Brokers Have on Consumers, and How Do They Use It?
Date CapturedSaturday December 21, 2013 10:31 AM
Chairman John D. (Jay) Rockefeller IV today announced the U.S. Senate Committee on Commerce, Science, and Transportation will hold a hearing on Wednesday, December 18, 2013, at 2:30 p.m. to examine the data broker industry and how industry practices may impact consumers. The hearing comes after a yearlong Commerce Committee examination of how data brokers collect, compile, and sell consumer information for marketing purposes. In October 2012, Rockefeller launched an investigation into the data broker industry to give consumers a better understanding of how their personal information is handled, issuing information requests to nine representative data brokers. Rockefeller sent an additional set of inquiries in September 2013 to twelve popular personal finance, health, and family-focused websites to further explore data broker information collection practices, and further expanded the investigation in October 2013 by requesting that Experian provide specific information about the company’s customer vetting practices following news reports alleging that an Experian subsidiary sold data to an identity theft scheme.
Testimony of Pam Dixon Executive Director, World Privacy Forum Before the Senate Committee on Commerce, Science, and Transportation What Information Do Data Brokers Have on Consumers, and How Do They Use It?
Date CapturedSaturday December 21, 2013 09:13 AM
The data broker industry has not shown restraint. Nothing is out of bounds. No list is too obnoxious to sell. Data brokers sell lists that allow for the use of racial, ethnic and other factors that would be illegal or unacceptable in other circumstances. These lists and scores are used everyday to make decisions about how consumers can participate in the economic marketplace. Their information determines who gets in and who gets shut out. All of this must change. I urge you to take action.
A Review of the Data Broker Industry: Collection, Use, and Sale of Consumer Data for Marketing Purposes
Date CapturedSaturday December 21, 2013 08:45 AM
STAFF REPORT FOR CHAIRMAN ROCKEFELLER; DECEMBER 18, 2013; This Committee inquiry has been conducted at a time when sources of consumer data and technological capabilities for storage and speedy analysis of data continue to expand. As data brokers are creating increasingly detailed dossiers on millions of consumers, it is important for policymakers to continue vigorous oversight to assess the potential harms and benefits of evolving industry practices and to make sure appropriate consumer protections are in place.
FTC to Study Data Broker Industry’s Collection and Use of Consumer Data
Date CapturedTuesday December 18, 2012 01:44 PM
The nine data brokers receiving orders from the FTC are: 1) Acxiom, 2) Corelogic, 3) Datalogix, 4) eBureau, 5) ID Analytics, 6) Intelius, 7) Peekyou, 8) Rapleaf, and 9) Recorded Future. The FTC is seeking details about: the nature and sources of the consumer information the data brokers collect; how they use, maintain, and disseminate the information; and the extent to which the data brokers allow consumers to access and correct their information or to opt out of having their personal information sold.

Data Mining

Testimony of Pam Dixon Executive Director, World Privacy Forum Before the Senate Committee on Commerce, Science, and Transportation What Information Do Data Brokers Have on Consumers, and How Do They Use It?
Date CapturedSaturday December 21, 2013 09:13 AM
The data broker industry has not shown restraint. Nothing is out of bounds. No list is too obnoxious to sell. Data brokers sell lists that allow for the use of racial, ethnic and other factors that would be illegal or unacceptable in other circumstances. These lists and scores are used everyday to make decisions about how consumers can participate in the economic marketplace. Their information determines who gets in and who gets shut out. All of this must change. I urge you to take action.
Status of the Department of Education’s Inventory of Its Data Collections
Date CapturedSaturday August 03, 2013 08:32 AM
1. What information will the inventory of Education’s data collections contain and when will the inventory be completed? 2. What process is Education using to catalog its data collections, and to what extent does that process include internal controls to ensure the accuracy of the information collected? 3. What are Education’s plans to make its data collection inventory publicly available?

Directory Information

Data Brokers – Is Consumers’ Information Secure
Date CapturedFriday November 13, 2015 09:47 AM
Recorded: Subcommittee on Privacy, Technology and the Law Date: Tuesday, November 3, 2015 Time: 02:30 PM Location: Dirksen Senate Office Building 226 Presiding: Chairman Flake
Data Brokers – Is Consumers’ Information Secure
Date CapturedFriday November 13, 2015 09:27 AM
Ms. Pam Dixon; Executive Director -World Privacy Forum before Subcommittee on Privacy, Technology and the Law, Date: Tuesday, November 3, 2015; Time: 02:30 PM; Location: Dirksen Senate Office Building 226; Presiding: Chairman Flake
Opt-Out 2014: Protect Children video
Date CapturedTuesday August 12, 2014 06:39 PM
Opt-Out 2014: Protect Children
Date CapturedTuesday August 12, 2014 06:10 PM
Testimony of Pam Dixon Executive Director, World Privacy Forum Before the Senate Committee on Commerce, Science, and Transportation What Information Do Data Brokers Have on Consumers, and How Do They Use It?
Date CapturedSaturday December 21, 2013 09:13 AM
The data broker industry has not shown restraint. Nothing is out of bounds. No list is too obnoxious to sell. Data brokers sell lists that allow for the use of racial, ethnic and other factors that would be illegal or unacceptable in other circumstances. These lists and scores are used everyday to make decisions about how consumers can participate in the economic marketplace. Their information determines who gets in and who gets shut out. All of this must change. I urge you to take action.

DNA

Genetic Testing and Screening in the Age of Genomic Medicine
Date CapturedThursday October 18, 2012 08:38 AM
Most states, including New York, have added tests to their newborn screening panels without formal criteria or processes to guide them. Many commentators recommend that newborn screening programs form advisory committees composed of medical and laboratory professionals and community participants to establish criteria for screening tests and to review screening test panels and program outcomes.

FERPA

PTAC: Transparency Best Practices for Schools and Districts
Date CapturedFriday August 15, 2014 11:22 AM
FERPA Exceptions Summary
Date CapturedMonday April 14, 2014 09:03 AM
EPIC vs US ED reply
Date CapturedFriday February 22, 2013 09:30 AM
EPIC V US ED Defendant Statement of ISSUES
Date CapturedTuesday February 05, 2013 11:26 AM
EPIC v US Department of Education
Date CapturedThursday March 01, 2012 09:08 AM
EPIC has filed a lawsuit under the Administrative Procedure Act against the Department of Education. EPIC's lawsuit argues that the agency's December 2011 regulations amending the Family Educational Rights and Privacy Act exceed the agency's statutory authority, and are contrary to law. The agency issued the revised regulations despite the fact that “numerous commenters . . . believe the Department lacks the statutory authority to promulgate the proposed regulations."

FTC alert informs parents how to protect privacy of children

FTC CONSUMER ALERT: Protecting Your Child's Personal Information at School
Date CapturedFriday September 02, 2011 06:10 PM
[Ask your child's school about its directory information policy. Student directory information can include your child's name, address, date of birth, telephone number, email address, and photo. FERPA requires schools to notify parents and guardians about their school directory policy, and give you the right to opt-out of the release of directory information to third parties. It's best to put your request in writing and keep a copy for your files. If you don't opt-out, directory information may be available not only to the people in your child's class and school, but also to the general public.]

GAO

Status of the Department of Education’s Inventory of Its Data Collections
Date CapturedSaturday August 03, 2013 08:32 AM
1. What information will the inventory of Education’s data collections contain and when will the inventory be completed? 2. What process is Education using to catalog its data collections, and to what extent does that process include internal controls to ensure the accuracy of the information collected? 3. What are Education’s plans to make its data collection inventory publicly available?

Identity Theft

ID THEFT RESOURCES
Date CapturedFriday February 01, 2013 08:50 PM

Illegal access to student information

Privacy Rights Clearinghouse chronology of education breaches
Date CapturedMonday September 05, 2011 11:07 AM
Beth Givens -- Privacy Rights Clearinghouse Education breach chronology from 2005 - 2011.
Office of Inadequate Security
Date CapturedMonday September 05, 2011 10:40 AM
Education breaches

Longitudinal Database

How Much Data Is Enough Data? What happens to privacy when bureaucracies exceed their scope
Date CapturedThursday October 18, 2012 04:38 PM
The following is a detailed account of Oklahoma’s P20 Council (that organization dedicated to the collection of “educational data” as prescribed by the Obama Administration through development of a State Longitudinal Data System (SLDS))- their operation, goals and function in the state of Oklahoma. This is, in fact, very important information, as EVERY STATE IN THE UNION is to have a similar council. Not all SLDS development groups are called, P20 (which stands for pre-K to 20 years of age – the time span over which this data is to be collected and accrued). Some other acronyms are P12, P20 Workforce and SLDS.
America’s Children: Key National Indicators of Well-Being
Date CapturedTuesday August 28, 2012 07:23 AM
The Forum fosters coordination and integration among 22 Federal agencies that produce or use statistical data on children and families, and seeks to improve Federal data on children and families.

MOOC

What Campus Leaders Need to Know About MOOCs
Date CapturedFriday February 08, 2013 12:59 PM
MOOC ALERT
Date CapturedWednesday February 06, 2013 02:09 PM
MOOCs are MASSIVE OPEN ONLINE COURSES

Opt out: What you need to know

NOTICE OF DIRECTORY INFORMATION OPT-OUT
Date CapturedTuesday September 20, 2011 05:14 PM
This is a draft OPT-OUT form. Please comment by tweeting @EducationNY or Email to Sheila@EducationNewYork.com
US Education Department Model Notice for Directory Information
Date CapturedMonday September 05, 2011 12:21 PM
The Family Educational Rights and Privacy Act (FERPA), a Federal law, requires that [School District], with certain exceptions, obtain your written consent prior to the disclosure of personally identifiable information from your child's education records. However, [School District] may disclose appropriately designated "directory information" without written consent, unless you have advised the District to the contrary in accordance with District procedures. Directory information may include: Student's name; Address; Telephone listing; Electronic mail address; Photograph; Date and place of birth; Major field of study; Dates of attendance; Grade level; Participation in officially recognized activities and sports; Weight and height of members of athletic teams; Degrees, honors, and awards received; The most recent educational agency or institution attended; Student ID number, user ID, or other unique personal identifier used to communicate in electronic systems that cannot be used to access education records without a PIN, password, etc. (A student's SSN, in whole or in part, cannot be used for this purpose.)
Example of customized opt-out form
Date CapturedSunday September 04, 2011 07:45 PM
COLLEGE OF CHARLESTON FERPA DIRECTORY INFORMATION OPT-OUT FORM - note parents or college students have choices as to which information they want to share.
FTC CONSUMER ALERT: Student Surveys: Ask Yourself Some Questions
Date CapturedFriday September 02, 2011 06:35 PM
[The Protection of Pupil Rights Amendment (PPRA) is a federal law that affords certain rights to parents of minor students with regard to surveys that ask questions of a personal nature, as well as to surveys designed to collect personal information from students for marketing purposes. Briefly, with regard to marketing surveys, PPRA generally requires schools to develop policies, notify parents about these surveys and permit them to opt their children out of participation in those surveys. Surveys that are exclusively used for certain educational purposes are excepted from these requirements.] [FTC recommends that you check to see if the survey form includes a privacy statement. If there is no privacy statement, you may want to think twice about distributing the survey. In any case, it is wise to know: • who is collecting the information; • how the information will be used; • with whom the information will be shared; and • whether students will have a choice about the use of their information.]
FTC CONSUMER ALERT: Protecting Your Child's Personal Information at School
Date CapturedFriday September 02, 2011 06:10 PM
[Ask your child's school about its directory information policy. Student directory information can include your child's name, address, date of birth, telephone number, email address, and photo. FERPA requires schools to notify parents and guardians about their school directory policy, and give you the right to opt-out of the release of directory information to third parties. It's best to put your request in writing and keep a copy for your files. If you don't opt-out, directory information may be available not only to the people in your child's class and school, but also to the general public.]

Opt-Out

Opt-Out 2014: Protect Children video
Date CapturedTuesday August 12, 2014 06:39 PM
OPT-OUT PROTECT KIDS
Date CapturedSunday December 30, 2012 03:21 PM
Genetic Testing and Screening in the Age of Genomic Medicine
Date CapturedThursday October 18, 2012 08:38 AM
Most states, including New York, have added tests to their newborn screening panels without formal criteria or processes to guide them. Many commentators recommend that newborn screening programs form advisory committees composed of medical and laboratory professionals and community participants to establish criteria for screening tests and to review screening test panels and program outcomes.
New York State Sample Parental Notice Language for 2011-2012 School Year
Date CapturedTuesday January 24, 2012 01:44 PM
If you do not wish to have your child’s weight status group information included as part of the Health Department’s survey this year, please print and sign your name below and return this form:

PPRA

Methodology of the Youth Risk Behavior Surveillance System 2013
Date CapturedSunday November 03, 2013 09:39 PM
The Youth Risk Behavior Surveillance System (YRBSS), established in 1991, monitors six categories of priority health-risk behaviors among youths and young adults: 1) behaviors that contribute to unintentional injuries and violence; 2) sexual behaviors that contribute to human immunodeficiency virus (HIV) infection, other sexually transmitted diseases, and unintended pregnancy; 3) tobacco use; 4) alcohol and other drug use; 5) unhealthy dietary behaviors; and 6) physical inactivity. In addition, YRBSS monitors the prevalence of obesity and asthma among this population. [Certain schools use active permission, meaning that parents must send back to the school a signed form indicating their approval before their child can participate. Other schools use passive permission, meaning that parents send back a signed form only if they do not want their child to participate in the survey.]

Race to the Top (RttT)

RACE TO THE TOP: Reform Efforts Are Under Way and Information Sharing Could Be Improved
Date CapturedMonday February 27, 2012 10:49 PM
GAO: RACE TO THE TOP: Reform Efforts Are Under Way and Information Sharing Could Be Improved
New York State Race to the Top Subgrants to Participating LEAs NOV 2010
Date CapturedTuesday February 14, 2012 12:08 AM
Race to the Top Subgrants to Participating LEA's (50% of Total) Based on Receipt of Letters of Intent total $348,323,000 in 2010.
NEW YORK: RACE TO THE TOP ANNUAL PERFORMANCE REPORT
Date CapturedFriday January 20, 2012 02:57 PM
New York faces the ongoing challenge of communicating and collaborating with its various stakeholders. Similarly, the complexity of reviewing and approving Scopes of Work, budgets, expenditures, and evaluation plans for all of the State’s participating LEAs presented a formidable task that required a high level of strategic planning and logistical coordination by NYSED leadership. The State is working to overcome these challenges by investing in communication tools and leveraging other quality-control methods (such as a new online expenditure reporting tool) in order to increase its responsiveness and efficiency in the future.

RFID

SB 173
Date CapturedThursday January 24, 2013 04:27 PM
TEXAS Sen. Estes SB 173: Relating to prohibiting the use of radio frequency identification technology to transmit information regarding public school students. (RFID)

State databases

Fordham CLIP Comments on FERPA NPRM May 23, 2011 Docket: ED-2011-OM-0002 1
Date CapturedWednesday June 22, 2011 10:24 PM
Fordham Professor of Law Joel Reidenberg: Proposed Amendments to the FERPA Regulations contradict Congressional Mandates; Impermissible expansion of “Authorized representative” proposed in §99.3; Problematic expansion of “directory information” proposed in §99.3; Impermissible expansion of the “audit and evaluation” provision proposed in § 99.35(a)(2); Questionable Enforcement proposed in §99.35 ;
Education New York comments re Student Privacy submitted to FERPA NPRM - May 23, 2011
Date CapturedMonday May 23, 2011 09:22 PM
Document ID: ED-2011-OM-0002-0001: Family Educational Rights and Privacy. The proposed changes to FERPA do not adequately address the capacity of marketers and other commercial enterprises to capture, use, and re-sell student information. Even with privacy controls in place, it is also far too easy for individuals to get a hold of student information and use it for illegal purposes, including identity theft, child abduction in custody battles, and domestic violence. Few parents are aware, for example, that anyone can request -- and receive -- a student directory from a school. Data and information breaches occur every day in Pre-K-20 schools across the country, so that protecting student privacy has become a matter of plugging holes in a dyke rather than advancing a comprehensive policy that makes student privacy protection the priority.
United States House of Representatives Committee on Education and Labor Hearing on “How Data Can be Used to Inform Educational Outcomes” April 14, 2010
Date CapturedMonday March 14, 2011 07:36 PM
1. States are warehousing sensitive information about identifiable children. 2. The Fordham CLIP study documents that privacy protections are lacking and rules need to be developed and implemented to assure that children’s educational records are adequately protected. 3. As part of basic privacy standards, strong data security is necessary to minimize the risks of data invasions, scandals and melt-downs from centralized databases of children’s personal information. Statement of Joel R. Reidenberg, Professor of Law and Founding Academic Director Center on Law and Information Policy, Fordham University School of Law New York, NY
CHILDREN’S EDUCATIONAL RECORDS AND PRIVACY -- A STUDY OF ELEMENTARY AND SECONDARY SCHOOL STATE REPORTING SYSTEMS -- October 28, 2009
Date CapturedFriday October 30, 2009 09:44 AM
[The Study reports on the results of a survey of all fifty states and finds that state educational databases across the country ignore key privacy protections for the nation's K-12 children. The Study finds that large amounts of personally identifiable data and sensitive personal information about children are stored by the state departments of education in electronic warehouses or for the states by third party vendors. These data warehouses typically lack adequate privacy protections, such as clear access and use restrictions and data retention policies, are often not compliant with the Family Educational Rights and Privacy Act, and leave K-12 children unprotected from data misuse, improper data release, and data breaches. The Study provides recommendations for best practices and legislative reform to address these privacy problems.] Joel R. Reidenberg, Professor of Law and Founding Academic Director of CLIP Jamela Debelak, Esq., Executive Director of CLIP

Student Privacy

Data Brokers – Is Consumers’ Information Secure
Date CapturedFriday November 13, 2015 09:47 AM
Recorded: Subcommittee on Privacy, Technology and the Law Date: Tuesday, November 3, 2015 Time: 02:30 PM Location: Dirksen Senate Office Building 226 Presiding: Chairman Flake

The market for information about your children

CA: State colleges, alumni groups reap $6.6M in credit card royalties
Date CapturedFriday September 02, 2011 08:29 PM
Erica Perez; Under the agreements, banks typically get exclusive rights to market credit cards to university students and alumni, and they pay royalties to the universities or related organizations based on the number of new credit card accounts opened.] Excerpt from source linked to entry: [university must give the bank mailing lists for alumni, faculty, staff, fans, ticket holders, donors, undergraduates and graduate students. The lists include postal addresses, telephone numbers and e-mail addresses.]
American Student List (ASL)
Date CapturedMonday March 07, 2011 05:39 PM
Student data for sale ONLINE. College Bound High School Students - Over 3 million high school juniors and seniors who have indicated an interest in higher education. Selectable by class year, age, head of household, income, geography and more; Teenage Lifestyle Interests - 5 million individuals ages 14-19. Selectable by self-reported interests in specific areas including sports, scholastic activities, careers, computers and more; College Students - Approximately 5 million students attending numerous colleges and universities. Home and/or school addresses and phone numbers are available. Selectable by class year, field of study, college attended, tuition level, competitive rank and more; College Grads And Alumni - Approximately 17 million College Grads/Alumni. Selectable by school last attended, household income, home ownership and more; Families With Children - 20 million households with the presence of children, tweens and teens (newborn through age 19). Selectable by head of household, income, gender, ethnicity, geography and more. Ethnic Lists - Over 3 million Ethnic Teens, 4.5 million Ethnic Families and 15 million Ethnic Young Adults. Numerous backgrounds are available including Hispanic/Latino, Asian-American, Native-American, African-American and more. Also available — Foreign-Speaking Teens — first- or second-generation teens who speak the language of their ethnic group.
Schools Selling Students' Personal Information
Date CapturedWednesday October 06, 2010 03:17 PM
Link to stories about schools selling student information
FAIR INFORMATION PRACTICE PRINCIPLES
Date CapturedFriday October 30, 2009 11:08 AM
Over the past quarter century, government agencies in the United States, Canada, and Europe have studied the manner in which entities collect and use personal information -- their "information practices" -- and the safeguards required to assure those practices are fair and provide adequate privacy protection. The result has been a series of reports, guidelines, and model codes that represent widely-accepted principles concerning fair information practices. Common to all of these documents [hereinafter referred to as "fair information practice codes"] are five core principles of privacy protection: (1) Notice/Awareness; (2) Choice/Consent; (3) Access/Participation; (4) Integrity/Security; and (5) Enforcement/Redress.

US Department of Education

FACT SHEET: UNLOCKING THE POWER OF EDUCATION DATA FOR ALL AMERICANS
Date CapturedFriday February 08, 2013 12:41 PM
Applications for New Awards; Carol M. White Physical Education Program
Date CapturedWednesday March 21, 2012 04:55 PM
Federal Register/Vol. 76, No. 60/Tuesday, March 29, 2011/Notices

US Education Department

EPIC vs US ED reply
Date CapturedFriday February 22, 2013 09:30 AM
EPIC v US ED (US ED answer)
Date CapturedFriday May 04, 2012 02:53 PM
FERPA: Guidance for Reasonable Methods & Agreements
Date CapturedTuesday December 20, 2011 04:45 PM
DEPARTMENT OF EDUCATION 34 CFR Part 99 in the Federal Register (76 FR 19726)
Date CapturedMonday December 05, 2011 11:20 AM
SUMMARY: The Secretary of Education (Secretary) amends the regulations implementing section 444 of the General Education Provisions Act (GEPA), which is commonly referred to as the Family Educational Rights and Privacy Act (FERPA). These amendments are needed to ensure that the U.S. Department of Education (Department or we) continues to implement FERPA in a way that protects the privacy of education records while allowing for the effective use of data. Improved access to data will facilitate States’ ability to evaluate education programs, to ensure limited resources are invested effectively, to build upon what works and discard what does not, to increase accountability and transparency, and to contribute to a culture of innovation and continuous improvement in education.
Basic Concepts and Definitions for Privacy and Confidentiality in Student Education Records
Date CapturedThursday March 03, 2011 01:21 PM
NCES 2011-601 This first brief discusses basic concepts and definitions that establish a common set of terms related to the protection of personally identifiable information, especially in education records.
NCES 2011-602 Data Stewardship: Managing Personally Identifiable Information in Electronic Student Education Records
Date CapturedTuesday January 04, 2011 09:55 PM
SLDS Technical Brief - Guidance for Statewide Longitudinal Data Systems (SLDS) [A privacy and data protection program for student education records must include an array of rules and procedures for protecting PII held in the record system. It also must include a full set of public disclosures of the existence and uses of the information included in the data system, a description of all parents’ or eligible students’ rights to review and appeal the contents of an individual education record and of their rights and the procedures to appeal a violation. ]*****[A school directory may include PII such as a student’s name, grade level, and contact information. Taken by itself, the release of this information is not harmful to a student. However, when combined with the student’s Social Security Number or another identifier and the student’s education record, this information has the potential for violating a student’s right to privacy. The release of this combined record could lead to harm or embarrassment. Thus, the privacy and data protection program should focus on PII that will be maintained in the electronic student record system with its likely wealth of student data.2}

Welfare

December 2011 FERPA Regulations: Information Sharing Around Child Welfare and Education
Date CapturedThursday January 26, 2012 08:02 AM
The new rules offer expanded opportunities for state or local child welfare and education agencies to share information. However, given that these new regulations do not sufficiently eliminate the barriers to intersystem communication for children in care, we look forward to legislative changes to ensure that child welfare agencies can fulfill their duty to ensure that the educational needs of the children in their care are met.

Who Is Watching Your Children?

It's 3PM: Who's Watching Your Children?
Date CapturedWednesday December 12, 2012 05:48 PM
Parents concerned about their children's privacy should be aware of how easily personally identifiable information can be bought and sold by marketers as well as by identity thieves. FERPA was enacted in 1974 to protect the privacy of education records and directory information -- including name, address, phone number, date of birth, and e-mail address, among other personally identifiable information. Parents should be aware that under FERPA, directory information can be disclosed without parental consent. If you do not opt-out of directory information personal and identifiable information about your children may be public.

Back to Top of Page


Protecting Children's Privacy | Information Policy News | FERPA | Learning Links | Attendance | about | contact edny | site map