Data Privacy and Security
In District 258, the privacy and online safety of our students is of utmost importance. We have always taken steps to guard closely the student data collected within our networks or by the online resources we use in our schools. Effective July 1, 2021, all school districts are required by the Student Online Personal Protection Act (SOPPA) to provide additional measures that student data is protected when collected by educational technology companies and that the data is used for beneficial purposes only.
District 258 staff will monitor student use of these resources when students are at school. Parents are responsible for monitoring their child's use of these tools when at home. Students are responsible for their own behavior at all times. Student safety is our highest priority.
Below, we’ve outlined several laws related to the protection of privacy of our students and families.
Student Online Personal Protection Act (SOPPA)
The Student Online Personal Protection Act (SOPPA) is the data privacy law that regulates student data collection and use by schools, the Illinois State Board of Education, and third-party vendors. As part of SOPPA, these vendors must enter into Data Privacy Agreements (DPA) with each district they work with. These agreements outline what data is store, how it is protected, what the company can and cannot do with the data, and what they will do in the event of a data breach.
The changes to SOPPA mandate that by July 2021, schools must have written agreements with all EdTech software vendors in use. Districts must also make readily available via their websites an overview of security practices, a description of how parents can ensure their student data privacy rights are being met, a list of approved vendors and their corresponding written agreements, and a list of any student data breaches that have impacted more than 10% of students. SOPPA full text.
CHILDREN AND FAMILY PRIVACY LAWS
Below, we’ve outlined several laws related to the protection of privacy of our students and families. Please select the drop-down menu for the appropriate protection act.
COPPA restricts the collection of personal information from children under 13 by companies operating websites, games, mobile applications, and digital services that are directed to children or that collect personal information from individuals known to be children. COPPA FAQ
CIPA imposes certain requirements on schools that utilize the federal E-Rate program to receive discounts for internet access and other technology services, or that receive federal grants for other technology expenses. FCC CIPA
FERPA governs information in a student’s education record, restricting access and use of student information. FERPA
SCHOOL BOARD POLICY 7:345 - STUDENT DATA PRIVACY AND SECURITY
For more information on the ways that the district prioritizes student safety and security online, please refer to the School Board Policy 7:345 - Use of Educational Technologies