Technology and Data Privacy Committee June 30, 2014
|
|
- Beverly Holmes
- 8 years ago
- Views:
Transcription
1 Technology and Data Privacy Committee June 30, 2014
2 Agenda 6/30 Committee Chair FERPA Review Policies Policy Example Tech Initiative - Title 1 Schools 1-to-1 Wrap-up Calendar Data Governance update
3 Today Family Educational Rights and Privacy Act (FERPA) FERPA 101 with Jim Branum Next Meeting Deeper Dive into FERPA with Kristin Edgar JRA/JRC Policy Review Vendor Contract Language
4 FERPA 101: An Overview Technology and Data Privacy Advisory Committee June 30, 2014
5 FERPA 101: Basics Family Educational Rights and Privacy Act Enacted U.S.C. 1232g and 34 CFR Part 99 Enforced by the Family Privacy Compliance Office within the U.S. Department of Education Applies to educational agencies that receive federal funding
6 FERPA 101: What Does it Do? Parents and eligible students have the right to inspect and seek amendment of their education records Generally prohibits the disclosure of personally identifiable information from education records, subject to certain exceptions
7 FERPA 101: Key Definitions Education records means records that are directly related to a student and maintained by a school or a party acting for the school Record means any information recorded in any way, including, but not limited to, hand writing, print, computer media, video or audio tape, film, microfilm, and microfiche
8 FERPA 101: Key Definitions Personally identifiable information includes student s name, parent/family member names, address of student/student s family, social security number or biometric record, date of birth, place of birth, mother s maiden name, and other information, that alone or in combination, is linked or linkable to a specific student that would allow a reasonable person in the school community, who does not have personal knowledge of the relevant circumstances, to identify the student with reasonable certainty
9 FERPA 101: Key Exceptions School officials who have a legitimate educational interest in the records School official may include a contractor, consultant, volunteer, or other party to whom a school has outsourced institutional services or functions Organizations conducting studies for, or on behalf of schools to develop, validate, or administer predictive tests, administer student aid programs, or improve instruction
10 FERPA 101: Key Exceptions Authorized representatives of the Comptroller General, the Attorney General, the Secretary, or state and local educational authorities Authorized representative means any entity or individual designated by a state or local educational authority or an agency headed by one of the officials listed above to conduct with respect to federal or state-supported education programs any audit or evaluation, or any compliance or enforcement activity in connection with federal legal requirements that relate to these programs
11 FERPA 101: Key Exceptions Directory information if a school has given public notice to parents and eligible students of the personally identifiable information designated as directory information Parents and eligible students have the right to refuse to let the school designate any or all of those types of information as directory information
12 FERPA 101: 2008 Revisions More exceptions added to the prior consent requirement: Records may be disclosed to accrediting organizations Records may be disclosed when, in the judgment of school officials, there is a threat to the health or safety of students Records disclosed to parents of eligible students under certain circumstances (e.g., eligible student is a dependent for tax purposes) Records disclosed to juvenile justice authorities as permitted by state law
13 FERPA 101: 2008 Revisions Disclosure of de-identified records permitted without consent for educational research purposes PII definition expanded to include biometric records, date of birth, mother s maiden name, and other information that would allow identification of a specific student
14 FERPA 101: 2008 Revisions Expand school official exception to include contractors, consultants, volunteers and other outside service providers used by a school to perform institutional services/functions. However, this must be specified in the school s annual FERPA notification. Schools must use reasonable methods to ensure that school officials only access those records in which they have a legitimate educational interest.
15 FERPA 101: 2012 Revisions Changes to directory information regulations to lessen the burden of obtaining consent for more mundane uses of student information. Schools able to adopt limited directory information policies to allow disclosure for specific, limited purposes. Parents who opt out of directory information designation may not prevent a school from requiring students to wear IDs or badges.
16 FERPA 101: 2008 Revisions Clarify studies exception Schools who disclose records under the studies exception must enter into a written agreement with the recipient organization that specifies the purpose/scope/duration of the study, limits use of the records, and limits redisclosure of the records Expands list of institutions that may redisclose education records without consent Now Federal and state officials that receive education records under the audit, evaluation, and compliance exceptions may redisclose records under certain conditions
17 FERPA 101: 2012 Revisions Changes to audit/evaluation and studies exceptions Broadens the definition of authorized representative. Previously did not include non-educational State and Federal agencies. Regulations revised to define an authorized representative as any entity or individual designated by a State or local educational authority or an agency headed by an official listed in 99.31(a)(3) who is involved in Federal- or State-supported education programs. State and local education authorities now able to share data with other government agencies that are not under their direct control, provided those agencies are involved in Federal- or State-supported education programs.
18 FERPA 101: 2012 Revisions Changes to audit/evaluation and studies exception continued: Defines education program as any program that is principally engaged in the provision of education, including, but not limited to, early childhood education, elementary and secondary education, postsecondary education, special education, job training, career and technical education, and adult education, and any program that is administered by an educational agency or institution. Education program includes more than just schools.
19 James Branum, Esq
20 Deeper Dive into FERPA In preparation for our deeper dive, do you have any questions that were not answered in the FERPA 101 presentation? In preparation for the upcoming policy review of JRA/JRC, Jeffco s FERPA policy, what questions do you have at this time?
21 Policy Review Review format Scope Summary Challenges served by the policy Compare education challenge to business JS Student use of the internet JSA Student use of personal devices
22 JS Student Use of Internet Applies to all students using Jeffco network resources Applies to Jeffco students using Jeffco devices outside district buildings Ensures that students are safe online and practice good digital citizenship Part of our policy and control set ensuring CIPA compliance and E-Rate funding
23 JS Student Use of Internet Outline Use is a privilege No expectation of privacy Place a student at a resource at a time Limit harassment Limit profane material Limit hacking Collaborative technologies Limit blending of personal and professional life Limit digital footprint
24 JSA Student Use of Personal Devices Applies to all students connecting personal devices to the District s network Addresses complex issues that arise as personal and professional lines are blurred Policy along with technical controls tie a student to a device at a time
25 JSA Student Use of Personal Devices Outline Use is a privilege Registration process (no shared access) Network protections No expectation of privacy Limit District s liability Limit District s responsibility for support
26 Tech Initiative Title 1 Schools 1-to-1
27 Calendar Review Technology and Data Privacy Advisory Committee Agenda Calendar Housekeeping Schedule Minutes Policy Review Technology Initiatives/Activities Other Risk, reports and follow-up Responsibilities and Activities Frequency Meeting Dates June July Aug Sept Oct Nov Dec Jan Feb Mar Apr 6/30 7/17 Committee Meetings 1 2 Schedule meetings for the fiscal year. Review and approve Committee minutes Annual - Monthly? Quarterly Policy Review Schedule a. Scope b. Summary c. What challenges are covered by the policy d. Compare challenges between district and business JS - Student Use of the Internet JSA - Student Use of Personal Devices JRA/JRC - Student Records/Release of Information on Students EHB - Cloud Vendor Assessment EHBA - Electronic Signatures EHBB - Technology Acquisition Policy GBEE - Staff Use of Internet GBEE-R - Elevated Privileges EH - Data Management EH-R - Data Classification EHA - Internet DMZ EHA-R - Key Escrow Management EHA-E1 - Linux Server Hardening EHA-E2 - Windows Server Hardening EHA-E3 - Router Switch Network Device Hardening EHAA - Computer Security EHAA-R1 - Audit Policy EHAA-R2 - Authentication Policy EHAA-R3 - Encryption Policy EHAA-R4 - Risk Assessment EHAC - Exception Management Policy EHAA-E - Incident Handling Overview of Technology Initiatives/Activities FERPA Overview and changes; prep for JRA/JRC policy review July Title 1 Schools 1-to-1 Initiative IT Security Overview Technology Plan Mobile Device Readiness (MDR) Data Privacy Presentation from legal consultant, Dave Navetta (tentative) Technology Acquisition approval process Data Lifecycle Data Transparency Data Governance Status Risk Management Reports/Updates 1 2 3?? Monthly May Jun
28 Data Governance Review * Scope Privacy & Security Policies, Audit, Encryption Policy review, update, new; 95% Data Quality Identify, Map, Master, Metadata, Lifecycle Dataset inventory 90%; Review phase Governance Awareness, Training, Planning, Monitoring DGIQ Conference best practices, tools Continuing the framework of quality; refining the bucket list
Family Educational Rights and Privacy Act Regulations
Family Educational Rights and Privacy Act Regulations 34 CFR Part 99 Subpart A-General Section 99.1 To which educational agencies or institutions do these regulations apply? 99.2 What is the purpose of
More informationYoung Scholars of Central Pennsylvania Charter School 1530 Westerly Parkway State College, PA 16801. 2015-2016 School Year
Young Scholars of Central Pennsylvania Charter School 1530 Westerly Parkway State College, PA 16801 2015-2016 School Year Annual Notification of Rights under Family Educational Rights and Privacy Act (FERPA)
More informationFamily Educational Rights Privacy (FERPA) Act
F l o r i d a H o u s e o f R e p r e s e n t a t i v e s Family Educational Rights Privacy (FERPA) Act EDUCATION FACT SHEET 2010-11 What is the Family Educational Rights Privacy Act? The Family Educational
More informationThe Importance of Data Exchange in Education
Addressing Student Privacy Issues Data Quality Institute November 4, 2015 Hot Topics Privacy is a national interest and high profile Congressional interest in FERPA State legislatures passing privacy laws
More informationFamily Educational Rights and Privacy Act (FERPA) Final Rule 34 CFR Part 99. Section-by-Section Analysis December 2008
Family Educational Rights and Privacy Act (FERPA) Final Rule 34 CFR Part 99 Section-by-Section Analysis December 2008 Under FERPA, 20 U.S.C. 1232g, a parent or eligible student has a right to inspect and
More informationAnalysis One Code Desc. Transaction Amount. Fiscal Period
Analysis One Code Desc Transaction Amount Fiscal Period 57.63 Oct-12 12.13 Oct-12-38.90 Oct-12-773.00 Oct-12-800.00 Oct-12-187.00 Oct-12-82.00 Oct-12-82.00 Oct-12-110.00 Oct-12-1115.25 Oct-12-71.00 Oct-12-41.00
More informationInformation Security Awareness Training Family Educational Rights and Privacy Act (FERPA)
Information Security Awareness Training Family Educational Rights and Privacy Act (FERPA) The FERPA training packet is part of the Information Security Awareness Training that must be completed by employees.
More informationFLORIDA DEPARTMENT OF EDUCATION
Executive Summary FLORIDA DEPARTMENT OF EDUCATION On September 23, 2013, following the Governor's Education Summit, Governor Rick Scott released an Executive Order announcing a plan for policy improvements
More information1. LIMITATIONS ON ACCESS TO, OR DISCLOSURE OF, PERSONALLY IDENTIFIABLE INFORMATION.
MODEL MASSACHUSETTS PRIVACY LEGISLATION 1 1. LIMITATIONS ON ACCESS TO, OR DISCLOSURE OF, PERSONALLY IDENTIFIABLE INFORMATION. (A) AUTHORIZED REPRESENTATIVES. 2 The Department of Elementary and Secondary
More informationRoadmap. What is Big Data? Big Data for Educational Institutions 5/30/2014. A Framework for Addressing Privacy Compliance and Legal Considerations
Big Data for Educational Institutions A Framework for Addressing Privacy Compliance and Legal Considerations Roadmap Introduction What is Big Data? How are educational institutions using Big Data? What
More informationNORTH CAROLINA DEPARTMENT OF PUBLIC INSTRUCTION. Division of Data, Research and Federal Policy July 29, 2013
NORTH CAROLINA DEPARTMENT OF PUBLIC INSTRUCTION Transmitting Private Information Electronically Best Practices Guide for Communicating Personally Identifiable Information by Email, Fax or Other Electronic
More informationOnline Lead Generation: Data Security Best Practices
Online Lead Generation: Data Security Best Practices Released September 2009 The IAB Online Lead Generation Committee has developed these Best Practices. About the IAB Online Lead Generation Committee:
More informationAT&T Global Network Client for Windows Product Support Matrix January 29, 2015
AT&T Global Network Client for Windows Product Support Matrix January 29, 2015 Product Support Matrix Following is the Product Support Matrix for the AT&T Global Network Client. See the AT&T Global Network
More informationPTAC Toolkit for LEAs: Staff Policies and Teacher Access March 24, 2014
PTAC Toolkit for LEAs: Staff Policies and Teacher Access March 24, 2014 Baron Rodriguez, PTAC Director Mike Tassey, PTAC Security Consultant Today s Presentation Toolkit for the school districts overview
More informationJuly 2016 1101 CONNECTICUT AVENUE NW, SUITE 1100 WASHINGTON, DC 20036-4303 202.785.0453 FAX. 202.785.1487 WWW.NASFAA.ORG
July 2016 1101 CONNECTICUT AVENUE NW, SUITE 1100 WASHINGTON, DC 20036-4303 202.785.0453 FAX. 202.785.1487 WWW.NASFAA.ORG Financial Aid Data Sharing I. Introduction Financial aid professionals collect and
More informationENROLLMENT DATA SHARING AGREEMENT Between «Institution» and the Minnesota Office of Higher Education
ENROLLMENT DATA SHARING AGREEMENT Between «Institution» and the Minnesota Office of Higher Education The «Institution» is an educational agency or institution subject to the Family Educational Rights and
More informationCHAPTER 149 FORMERLY SENATE SUBSTITUTE NO. 1 FOR SENATE BILL NO. 79
CHAPTER 149 FORMERLY SENATE SUBSTITUTE NO. 1 FOR SENATE BILL NO. 79 AN ACT TO AMEND TITLE 14 OF THE DELAWARE CODE RELATING TO EDUCATIONAL DATA GOVERNANCE. BE IT ENACTED BY THE GENERAL ASSEMBLY OF THE STATE
More informationU.S. Department of Health and Human Services. U.S. Department of Education
U.S. Department of Health and Human Services U.S. Department of Education Joint Guidance on the Application of the Family Educational Rights and Privacy Act (FERPA) And the Health Insurance Portability
More informationHIPAA or FERPA? A Primer on School Health Information Sharing in California
HIPAA or FERPA? A Primer on School Health Information Sharing in California HIPAA or FERPA? A Primer on School Health Information Sharing in California The California School Health Centers Association
More informationOCHIN Position Paper. April 2012. Student Treatment Records under HIPAA vs. FERPA
OCHIN Position Paper April 2012 Student Treatment Records under HIPAA vs. FERPA TABLE OF CONTENTS Purpose... 2 Definitions... 2 School-Based Health Centers and HIPAA... 4 Third-Party Healthcare Providers...
More informationConnecticut s P20 WIN Data Governance Manual
Connecticut s P20 WIN Data Governance Manual This manual provides a detailed description of the structure, processes, roles and responsibilities that guide the governance of P20 WIN. Prepared by P20 WIN
More informationMinnesota s Statewide Longitudinal Education Data System (SLEDS) Data Access & Management Policy
Minnesota s Statewide Longitudinal Education Data System (SLEDS) Data Access & Management Policy October 23, 2014 Approved by SLEDS Governance 1 Contents Section 1 - Overview... 5 1.1 Purpose... 5 Policy
More informationSOUTH DAKOTA DEPARTMENT OF EDUCATION
SOUTH DAKOTA DEPARTMENT OF EDUCATION Data Access Policy DOE Data Management Office (605) 773-3248 05/05/2015 1 P age TABLE OF CONTENTS Contents TABLE OF CONTENTS... 2 POLICY STATEMENT... 3 PURPOSE... 3
More informationCOMMENTS: The Privacy Act of 1974 (5 U.S.C. 552a(e)(4) and (11) Notice of an Altered Systems of Records (NSLDS)
October 4, 2010 Director, NSLDS Systems, Application, Operations and Delivery Services Federal Student Aid U.S. Department of Education 830 First Street, NE - Room 44E3 Union Center Plaza (UCP) Washington,
More informationKentucky Wesleyan College Policy & Procedure Manuals - Student Information Privacy
Kentucky Wesleyan College Policy & Procedure Manual Student Information Privacy Policy Approval: President Policy Type: College Policy Owner: Registrar Responsible Office: Registrar Revision History Approval
More information2/9/2012. 2012 HIPAA Privacy and Security Audit Readiness. Table of contents
2012 HIPAA Privacy and Security Audit Readiness Mark M. Johnson National HIPAA Services Director Table of contents Page Background 2 Regulatory Background and HITECH Impacts 3 Office of Civil Rights (OCR)
More informationPolicy 3520.13 Student Data Protection and Privacy/Cloud-based Issues
Policy 3520.13 Student Data Protection and Privacy/Cloud-based Issues DATE: March 7, 2016 PREVIOUS ITEM: None ENCLOSURES: CABE s Suggested Policy 3520.13 CABE s January 23, 2015 Policy Update REASON: To
More informationStudent Data Breaches: Is Your District Prepared?
Student Data Breaches: Is Your District Prepared? Colleen A. Sloan, Esq., Manager, Labor Relations and Associate School Attorney JoAnn Balazs, Director, Management Services Janell Hallgren, Manager, Policy
More informationCLOUD COMPUTING ISSUES FOR SCHOOL DISTRICTS. Presented to the 2013 BRADLEY F. KIDDER LAW CONFERENCE. October 2, 2013
CLOUD COMPUTING ISSUES FOR SCHOOL DISTRICTS Presented to the 2013 BRADLEY F. KIDDER LAW CONFERENCE October 2, 2013 By: Diane M. Gorrow Soule, Leslie, Kidder, Sayward & Loughman, P.L.L.C. 220 Main Street
More informationor refusal to grant or to continue assistance under such program or activity to any recipient as to whom there has been an express finding on the
CITE 42 USC Sec. 2000d 01/06/97 TEXT Sec. 2000d. Prohibition against exclusion from participation in, denial of benefits of, and discrimination under federally assisted programs on ground of race, color,
More informationDepartment of Education
Tuesday, December 9, 2008 Part II Department of Education 34 CFR Part 99 Family Educational Rights and Privacy; Final Rule VerDate Aug2005 18:13 Dec 08, 2008 Jkt 217001 PO 00000 Frm 00001 Fmt 4717
More informationPrivacy Impact Assessment
MAY 24, 2012 Privacy Impact Assessment matters management system Contact Point: Claire Stapleton Chief Privacy Officer 1700 G Street, NW Washington, DC 20552 202-435-7220 claire.stapleton@cfpb.gov DOCUMENT
More informationMissouri Student Information System Data Governance
Nicole R. Galloway, CPA Missouri State Auditor ELEMENTARY AND SECONDARY EDUCATION Missouri Student Information System Data Governance October 2015 http://auditor.mo.gov Report No. 2015-093 Nicole R. Galloway,
More informationPrivacy Impact Assessment. For. TeamMate Audit Management System (TeamMate) Date: July 9, 2014. Point of Contact: Hui Yang Hui.Yang@ed.
For TeamMate Audit Management System (TeamMate) Date: July 9, 2014 Point of Contact: Hui Yang Hui.Yang@ed.gov System Owner: Wanda Scott Wanda.Scott@ed.gov Author: Mike Burgenger Office of the Inspector
More informationPrivacy Impact Assessment for the. Standardized Tracking and Accounting Reporting System- Financial Management System (STARS-FMS)
Privacy Impact Assessment for the Standardized Tracking and Accounting Reporting System- Financial Management System (STARS-FMS) United States Marshals Service Contact Point William E. Bordley Associate
More informationIvy Tech Community College of Indiana
Ivy Tech Community College of Indiana POLICY TITLE Family Educational Rights and Privacy Act (FERPA) POLICY NUMBER 3.6 (Former APPM 3.4) PRIMARY RESPONSIBILITY Student Affairs CREATION / REVISION / EFFECTIVE
More informationFederal Bureau of Prisons. Privacy Impact Assessment for the HR Automation System. Issued by: Sonya D. Thompson Deputy Assistant Director/CIO
Federal Bureau of Prisons Privacy Impact Assessment for the HR Automation System Issued by: Sonya D. Thompson Deputy Assistant Director/CIO Reviewed by: Approved by: Eric Olson, Acting Chief Information
More informationCOMPARISON OF FIXED & VARIABLE RATES (25 YEARS) CHARTERED BANK ADMINISTERED INTEREST RATES - PRIME BUSINESS*
COMPARISON OF FIXED & VARIABLE RATES (25 YEARS) 2 Fixed Rates Variable Rates FIXED RATES OF THE PAST 25 YEARS AVERAGE RESIDENTIAL MORTGAGE LENDING RATE - 5 YEAR* (Per cent) Year Jan Feb Mar Apr May Jun
More informationCOMPARISON OF FIXED & VARIABLE RATES (25 YEARS) CHARTERED BANK ADMINISTERED INTEREST RATES - PRIME BUSINESS*
COMPARISON OF FIXED & VARIABLE RATES (25 YEARS) 2 Fixed Rates Variable Rates FIXED RATES OF THE PAST 25 YEARS AVERAGE RESIDENTIAL MORTGAGE LENDING RATE - 5 YEAR* (Per cent) Year Jan Feb Mar Apr May Jun
More informationIntroduction to The Privacy Act
Introduction to The Privacy Act Defense Privacy and Civil Liberties Office dpclo.defense.gov 1 Introduction The Privacy Act (5 U.S.C. 552a, as amended) can generally be characterized as an omnibus Code
More informationKey Elements for Strengthening State Laws and Policies Pertaining to Student Data Use, Privacy, and Security: Guidance for State Policymakers
Key Elements for Strengthening State Laws and Policies Pertaining to Student Data Use, Privacy, and Security: Guidance for State Policymakers Educators, students, parents, and policymakers need sound,
More informationNPSO Webinar: Data Privacy, Transparency, & Data Sharing. Baron Rodriguez, Director Privacy Technical Assistance Center
NPSO Webinar: Data Privacy, Transparency, & Data Sharing 2014 Baron Rodriguez, Director Privacy Technical Assistance Center 1 Agenda Discuss the current landscape: The Good, The Bad, The Ugly Discuss consideragons
More informationInformation Privacy Policy
Information Privacy Policy pol-032 Version: 2.01 Last amendment: Oct 2014 Next Review: Aug 2017 Approved By: Council Date: 04 May 2005 Contact Officer: Director, Strategic Services and Governance INTRODUCTION
More informationSouth Dakota Parental Rights and Procedural Safeguards
South Dakota Parental Rights and Procedural Safeguards Special Education Programs Revised July 2011 Prior Written Notice... 1 Definition of Parental Consent... 3 Definition of a Parent... 3 Parental Consent...
More informationMega Transparency Report. March 2015. Requests for Removal of Content and for User Information
Mega Transparency Report March 205 Requests for Removal of Content and for User Information Introduction This is the first transparency report published by Mega since it commenced operations in January
More informationPrivacy Impact Assessment (PIA) Consular Affairs Enterprise Service Bus (CAESB) 01.00.00. Last Updated: May 1, 2015
United States Department of State (PIA) Consular Affairs Enterprise Service Bus (CAESB) 01.00.00 Last Updated: May 1, 2015 Bureau of Administration 1. Contact Information A/GIS/IPS Director Bureau of Administration
More informationAuthorization for Release of Information
Authorization for Release of Information Section I. Date: Student Name: Date of Birth: / / (mm/dd/yy) ID: Grade: School: Section II: Name: authorizes District # to release the specific information identified
More informationInformation Security Risk Assessment Checklist. A High-Level Tool to Assist USG Institutions with Risk Analysis
Information Security Risk Assessment Checklist A High-Level Tool to Assist USG Institutions with Risk Analysis Updated Oct 2008 Introduction Information security is an important issue for the University
More information2015 NMSBA SCHOOL LAW CONFERENCE
2015 NMSBA SCHOOL LAW CONFERENCE NETWORK SECURITY, DISTRICT POLICIES ON INTERNET USE, AND THE LAW Andrew M. Sanchez David A. Richter Cuddy & McCarthy, LLP 1 FEDERAL LAWS The Family Educational Rights and
More informationData Breach, Electronic Health Records and Healthcare Reform
Data Breach, Electronic Health Records and Healthcare Reform (This presentation is for informational purposes only and it is not intended, and should not be relied upon, as legal advice.) Overview of HIPAA
More informationCHILDREN S EDUCATIONAL RECORDS AND PRIVACY
Case 1:12-cv-00327-ABJ Document 10-20 Filed 06/29/12 Page 1 of 87 CHILDREN S EDUCATIONAL RECORDS AND PRIVACY A STUDY OF ELEMENTARY AND SECONDARY SCHOOL STATE REPORTING SYSTEMS October 28, 2009 CENTER on
More informationArizona School Immunization Requirements
Arizona School Immunization Requirements Parents: 1. Children must have proof of all required immunizations, or valid exemption, in order to attend the first day of school. Arizona law allows exemptions
More informationPrivacy Impact Assessment
AUGUST 16, 2013 Privacy Impact Assessment CIVIL PENALTY FUND AND BUREAU-ADMINISTERED REDRESS PROGRAM Contact Point: Claire Stapleton Chief Privacy Officer 1700 G Street, NW Washington, DC 20552 202-435-7220
More informationTITLE 23: EDUCATION AND CULTURAL RESOURCES SUBTITLE A: EDUCATION CHAPTER I: STATE BOARD OF EDUCATION SUBCHAPTER k: SCHOOL RECORDS
ISBE 23 ILLINOIS ADMINISTRATIVE CODE 375 TITLE 23: EDUCATION AND CULTURAL RESOURCES : EDUCATION CHAPTER I: STATE BOARD OF EDUCATION : SCHOOL RECORDS PART 375 STUDENT RECORDS Section 375.10 Definitions
More informationFamily Policy Compliance Office Guidelines: Disclosure of Education Records Concerning Registered Sex Offenders
Family Policy Compliance Office Guidelines: Disclosure of Education Records Concerning Registered Sex Offenders This guidance concerns an amendment to the Family Educational Rights and Privacy Act of 1974
More informationITS Policy Library. 11.08 - Use of Email. Information Technologies & Services
ITS Policy Library Information Technologies & Services Responsible Executive: Chief Information Officer, WCMC Original Issued: December 15, 2010 Last Updated: September 18, 2015 POLICY STATEMENT... 3 REASON
More informationCYBER AND IT SECURITY: CLOUD SECURITY FINAL SESSION. Architecture Framework Advisory Committee November 4, 2014
CYBER AND IT SECURITY: CLOUD SECURITY FINAL SESSION Architecture Framework Advisory Committee November 4, 2014 1 Agenda TIME TOPICS PRESENTERS 9:00 9:15 Opening Remarks and Introductions Shirley Ivan,
More informationITS Policy Library. 11.08 - Use of Email. Information Technologies & Services
ITS Policy Library 11.08 - Use of Email Information Technologies & Services Responsible Executive: Chief Information Officer, WCMC Original Issued: December 15, 2010 Last Updated: February 3, 2015 POLICY
More informationManaging Open Source Code Best Practices
Managing Open Source Code Best Practices September 24, 2008 Agenda Welcome and Introduction Eran Strod Open Source Best Practices Hal Hearst Questions & Answers Next Steps About Black Duck Software Accelerate
More informationPrivacy Impact Assessment for the Volunteer/Contractor Information System
Federal Bureau of Prisons Privacy Impact Assessment for the Volunteer/Contractor Information System Issued by: Sonya D. Thompson Deputy Assistant Director/CIO Reviewed by: Approved by: Vance E. Hitch,
More informationPreparing to Serve: Online Training Modules
Preparing to Serve: Online Training Modules MASSEN, A. AND KOWALEWSKI, B. (EDS.) COPYRIGHT 2010. WEBER STATE UNIVERSITY PREPARING TO SERVE: ONLINE TRAINING MODULES PROFESSIONALISM CULTURAL SENSITIVITY
More informationBUSINESS ASSOCIATE AGREEMENT BETWEEN AND COMMISSION ON ACCREDITATION, AMERICAN PSYCHOLOGICAL ASSOCIATION
BUSINESS ASSOCIATE AGREEMENT BETWEEN AND COMMISSION ON ACCREDITATION, AMERICAN PSYCHOLOGICAL ASSOCIATION This Agreement governs the provision of Protected Health Information ("PHI") (as defined in 45 C.F.R.
More informationSENATE SPONSORSHIP DATA IN THE ELEMENTARY AND SECONDARY EDUCATION SYSTEM. Bill Summary
Second Regular Session Seventieth General Assembly STATE OF COLORADO PREAMENDED This Unofficial Version Includes Committee Amendments Not Yet Adopted on Second Reading LLS NO. -0.0 Julie Pelegrin x00 HOUSE
More informationPrivacy Impact Assessment. For Person Authentication Service (PAS) Date: January 9, 2015
For Person Authentication Service (PAS) Date: January 9, 2015 Point of Contact and Author: Hanan Abu Lebdeh Hanan.Abulebdeh@ed.gov System Owner: Ganesh Reddy Ganesh.Reddy@ed.gov Office of Federal Student
More informationDepartment of Education - Proposed Rule Change to Effect on Student Data and Information
May 17, 2011 Ms. Regina Miles U.S. Department of Education 400 Maryland Avenue, SW Washington, DC 20202 Re: Public Comments on the Proposed Rule Change to regulations implementing FERPA, as requested in
More informationBUSINESS ASSOCIATE AGREEMENT
BUSINESS ASSOCIATE AGREEMENT THIS BUSINESS ASSOCIATE AGREEMENT ( Agreement ) by and between OUR LADY OF LOURDES HEALTH CARE SERVICES, INC., hereinafter referred to as Covered Entity, and hereinafter referred
More informationOther Forms from Seattle Public School District
SEATTLE PUBLIC SCHOOLS Other Forms from Seattle Public School District Medical & Other Forms Privacy Rights Student Survey Form to Identify Disabled Students (504-2) Authorization for Medications to be
More informationPRIVACY IMPACT ASSESSMENT (PIA) For the
PRIVACY IMPACT ASSESSMENT (PIA) For the DCAA Management Information System Defense Contract Audit Agency SECTION 1: IS A PIA REQUIRED? a. Will this Department of Defense (DoD) information system or electronic
More informationSecurity of Student Information: Family Educational Rights and Privacy Act (FERPA)
Security of Student Information: Family Educational Rights and Privacy Act (FERPA) FAMILY EDUCATIONAL RIGHTS AND PRIVACY ACT The Family Educational Rights and Privacy Act of 1974, as amended ("FERPA")
More informationHIPAA Privacy and Information Security Management Briefing
HIPAA Privacy and Information Security Management Briefing Karen Pagliaro-Meyer Privacy Officer kpagliaro@columbia.edu (212) 305-7315 Soumitra Sengupta Information Security Officer sen@columbia.edu (212)
More informationConsumer ID Theft Total Costs
Billions Consumer and Business Identity Theft Statistics Business identity (ID) theft is a growing crime and is a growing concern for state filing offices. Similar to consumer ID theft, after initially
More informationWhether information is on paper or online, the basic privacy rights for students and parents remain the
We live in an increasingly connected world where information flows between us and the organizations and companies we deal with every day. Historically that information was stored in filing cabinets but,
More informationFERPA and Homelessness A Technical Assistance Tool for NAEHCY Members
NATIONAL ASSOCIATION FOR THE EDUCATION OF HOMELESS CHILDREN Building Futures Through Education AND YOUTH The Family Educational Rights and Privacy Act FERPA and Homelessness A Technical Assistance Tool
More informationPrivacy Impact Assessment
DECEMBER 20, 2013 Privacy Impact Assessment MARKET ANALYSIS OF ADMINISTRATIVE DATA UNDER RESEARCH AUTHORITIES Contact Point: Claire Stapleton Chief Privacy Officer 1700 G Street, NW Washington, DC 20552
More informationINFORMATION EXCHANGE AGREEMENT BETWEEN THE SOCIAL SECURITY ADMINISTRATION AND THE STATE OF [NAME OF STATE], [NAME OF STATE AGENCY]
2012 MODEL STC AGREEMENT INFORMATION EXCHANGE AGREEMENT BETWEEN THE SOCIAL SECURITY ADMINISTRATION AND THE STATE OF [NAME OF STATE], [NAME OF STATE AGENCY] AS THE STATE TRANSMISSION/TRANSFER COMPONENT
More information- - If this claim is awarded, do you want a password to use SSA's Internet/phone service? Yes
SOCIAL SECURITY ADMINISTRATION APPLICATION FOR RETIREMENT INSURANCE BENEFITS TEL TOE 120/145/155 Form Approved OMB. 0960-0618 (Do not write in this space) I apply for all insurance benefits for which I
More informationCase 2:08-cv-02463-ABC-E Document 1-4 Filed 04/15/2008 Page 1 of 138. Exhibit 8
Case 2:08-cv-02463-ABC-E Document 1-4 Filed 04/15/2008 Page 1 of 138 Exhibit 8 Case 2:08-cv-02463-ABC-E Document 1-4 Filed 04/15/2008 Page 2 of 138 Domain Name: CELLULARVERISON.COM Updated Date: 12-dec-2007
More information140-2-.04 Criminal Justice Information Exchange and Dissemination.
140-2-.04 Criminal Justice Information Exchange and Dissemination. (1) Exchange and dissemination of criminal justice information by criminal justice agencies: (a) Criminal justice agencies shall exchange
More informationNC General Statutes - Chapter 116E 1
Chapter 116E. Education Longitudinal Data System. 116E-1. Definitions. (1) "Board" means the governing board of the North Carolina Longitudinal Data System. (2) "De-identified data" means a data set in
More informationSigned into law on February 17, 2009, the Stimulus Package known
Stimulus Package Expands HIPAA Privacy and Security and Adds Federal Data Breach Notification Law Marcy Wilder, Donna A. Boswell, and BarBara Bennett The authors discuss provisions of the Stimulus Package
More informationACCOUNTABLE HEALTHCARE IPA HIPAA PRIVACY AND SECURITY TRAINING. By: Jerry Jackson Compliance and Privacy Officer
ACCOUNTABLE HEALTHCARE IPA HIPAA PRIVACY AND SECURITY TRAINING By: Jerry Jackson Compliance and Privacy Officer 1 1 Introduction Welcome to Privacy and Security Training course. This course will help you
More informationPrivacy Impact Assessment
Privacy Impact Assessment For: Education Investigative Tracking System (EDITS) Date: April 10, 2013 Point of Contact: Hui Yang System Owner: Wanda A. Scott Author: William Hamel Office of Inspector General
More informationPII Personally Identifiable Information Training and Fraud Prevention
PII Personally Identifiable Information Training and Fraud Prevention Topics What is Personally Identifiable Information (PII)? Why are we committed to protecting PII? What laws govern us? How do we comply?
More informationDepartment of Defense DIRECTIVE
Department of Defense DIRECTIVE NUMBER 5400.11 October 29, 2014 DCMO SUBJECT: DoD Privacy Program References: See Enclosure 1 1. PURPOSE. This directive: a. Reissues DoD Directive (DoDD) 5400.11 (Reference
More informationSubject: U.S. Department of Housing and Urban Development (HUD) Privacy Protection Guidance for Third Parties
U.S. Department of Housing and Urban Development Office of Public and Indian Housing SPECIAL ATTENTION OF: NOTICE PIH-2014-10 Directors of HUD Regional and Field Offices of Public Housing; Issued: April
More informationDepartment of State SharePoint Server PIA
1. Contact Information A/GIS/IPS Director Department of State SharePoint Server PIA Bureau of Administration Global Information Services Office of Information Programs and Services 2. System Information
More informationHomeland Security Virtual Assistance Center
for the Homeland Security Virtual Assistance Center November 3, 2008 Contact Point Donald M. Lumpkins National Preparedness Directorate (FEMA) (202) 786-9754 Reviewing Official Hugo Teufel III Chief Privacy
More informationBlackboard Collaborate Web Conferencing Hosted Environment Technical Infrastructure and Security
Overview Blackboard Collaborate Web Conferencing Hosted Environment Technical Infrastructure and Security Blackboard Collaborate web conferencing is available in a hosted environment and this document
More informationHow To Write An Early Intervention Program Record Book
New York State Department of Health Early Intervention Program Responses to Technical Assistance Questions From Municipalities CPT Codes/ICD-9 Codes 1. Where/how can counties access a full and accurate
More informationUNIVERSITY PHYSICIANS OF BROOKLYN, INC. POLICY AND PROCEDURE. No: Supersedes Date: Distribution: Issued by:
UNIVERSITY PHYSICIANS OF BROOKLYN, INC. POLICY AND PROCEDURE Subject: ALCOHOL & SUBSTANCE ABUSE INFORMATION Page 1 of 10 No: Prepared by: Shoshana Milstein Original Issue Date: NEW Reviewed by: HIPAA Policy
More informationPII Compliance Guidelines
Personally Identifiable Information (PII): Individually identifiable information from or about an individual customer including, but not limited to: (a) a first and last name or first initial and last
More informationCalifornia State University, Sacramento INFORMATION SECURITY PROGRAM
California State University, Sacramento INFORMATION SECURITY PROGRAM 1 I. Preamble... 3 II. Scope... 3 III. Definitions... 4 IV. Roles and Responsibilities... 5 A. Vice President for Academic Affairs...
More informationFirstCarolinaCare Insurance Company Business Associate Agreement
FirstCarolinaCare Insurance Company Business Associate Agreement THIS BUSINESS ASSOCIATE AGREEMENT ("Agreement"), is made and entered into as of, 20 (the "Effective Date") between FirstCarolinaCare Insurance
More informationFor information about the undergraduate programs offered by AUR, please visit our academics page.
Consumer Information Compliant with the Department of Education Regulations please find the information below regarding AUR s Consumer Information. If you have further questions or concerns about the information
More informationWhat is FERPA? This act is enforced by the Family Policy Compliance Office, U.S. Department of Educational, Washington, D.C.
What is FERPA? The Family Educational Rights and Privacy Act of 1974 (FERPA), as amended (also referred to as the Buckley Amendment), is a Federal law designed to protect the confidentiality of a student
More informationMetropolitan Living, LLC 151 W. Burnsville Parkway, Suite 101 Burnsville, MN 55337 Ph: (952) 564-3030 Fax: (651) 925-0031
The Health Insurance Portability and Accountability Act (HIPAA) and Client Privacy Statement This notice describes how your medical information may be used and disclosed and how you can get access to this
More informationFederal Acquisition Regulation Subcontract Flowdown Provisions
Federal Acquisition Regulation Subcontract Flowdown Provisions Clause Title Title Applicability 52.203-6, Alt 1 Restrictions on Subcontractor Sales to the (if subcontract over $150,000) Government (SEP
More informationOnline Detainee Locator System
for the Online Detainee Locator System April 9, 2010 Contact Point James Chaparro Director, Office of Detention and Removal Operations U.S. Immigration and Customs Enforcement (202) 732-3100 Reviewing
More informationThe Honorable John Boozman Chairman Subcommittee on Financial Services and General Government Committee on Appropriations United States Senate
441 G St. N.W. Washington, DC 20548 B-327242 February 4, 2016 The Honorable Robert Aderholt Chairman Subcommittee on Agriculture, Rural Development, Food and Drug Administration, and Related Agencies Committee
More information