Ed Tech Archive

Data De-identification: An Overview of Basic Terms

April 28, 2017 | PTAC, U.S. Department of Education

Data De-identification: An Overview of Basic Terms

This document is intended to assist educational agencies and institutions with maintaining compliance with privacy and confidentiality requirements under the Family Educational Rights and Privacy Act (FERPA) by reviewing basic terminology used to describe data de-identification (see de-identification below) as well as related concepts and approaches. In addition to defining and clarifying the distinction among […]

More
FAQ: Cloud Computing and Privacy

April 28, 2017 | PTAC, U.S. Department of Education

FAQ: Cloud Computing and Privacy

This document is designed to assist educational agencies and institutions that are considering using cloud computing solutions for education data. It contains responses to frequently asked questions about meeting necessary data privacy and data security requirements, including compliance with the Family Educational Rights and Privacy Act, to ensure proper protection of education records.

More
SEA Contractor Responsibilities under FERPA

April 28, 2017 | PTAC, U.S. Department of Education

SEA Contractor Responsibilities under FERPA

This document is intended for state educational agencies (SEAs) and/or their contracted companies to use to inform the contractors’ staff about their responsibilities to protect students’ personally identifiable information acquired under FERPA’s audit or evaluation exception.

More
Responsibilities of Third-Party Service Providers under FERPA

April 28, 2017 | PTAC, U.S. Department of Education

Responsibilities of Third-Party Service Providers under FERPA

This document was developed by PTAC to assist online educational services providers, vendors, and contractors in understanding the Family Educational Rights and Privacy Act (FERPA). Our prior guidance, Protecting Student Privacy While Using Online Educational Services, was intended for school audiences; this guidance presents the same material, but in a format geared toward third-party service […]

More
Transparency Best Practices

April 28, 2017 | PTAC, U.S. Department of Education

Transparency Best Practices

Parents often ask questions like “What information are you collecting about my child?” “Why do you need that information, and what do you use it for?” or “How do you safeguard my child’s information?” These are legitimate questions that parents want schools and districts to answer. This document provides a number of recommendations for keeping […]

More
Data Breach Response Training Kit

April 28, 2017 | PTAC, U.S. Department of Education

Data Breach Response Training Kit

Any organization with electronic records is vulnerable to security breaches, and education agencies are no exception. The PTAC Data Breach Scenario is one of a series of exercises intended to assist schools, districts, and other educational organizations with internal data security training. The Password Data Breach interactive exercise is aimed at district management and provides […]

More
Data Security Checklist

April 28, 2017 | PTAC, U.S. Department of Education

Data Security Checklist

This checklist is designed to assist stakeholder organizations with developing and maintaining a successful data security program by listing essential components that should be considered when building such a program, with focus on solutions and procedures relevant for supporting data security operations of educational agencies.

More
Model Terms of Service: Protecting Student Privacy While Using Online Educational Services

April 28, 2017 | PTAC, U.S. Department of Education

Model Terms of Service: Protecting Student Privacy While Using Online Educational Services

The Privacy Technical Assistance Center, working with the Department of Education’s Family Policy Compliance office, has developed a new checklist document that provides a framework for evaluating online educational tools’ Terms of Service Agreements. This document is intended to assist users in understanding how a given online service or app will collect, use and/or transmit […]

More
Best Practices for Data Destruction

April 28, 2017 | PTAC, U.S. Department of Education

Best Practices for Data Destruction

The Data Destruction document is a best practices guide on properly destroying sensitive student data after it is no longer needed. It details the life cycle of data and discusses various legal requirements relating to the destruction of data under FERPA, and examines a variety of methods for properly destroying data. The guide also discusses […]

More