Student Data Privacy
Protecting personal information is at the heart of our efforts to provide a richer and more dynamic learning experience for all students. To do so, we strive to be clear about what data we collect, how data supports your child’s education and the safeguards in place to protect that data.
Which Data are Collected and Why?
We are we are working diligently to comply with the Illinois Student Online Personal Protection Act (SOPPA), which took effect on July 1, 2021, by building a database to track the applications we use and which student data are shared with third parties.
- For school operations, we collect data such as addresses and phone numbers, gender and age, as well as contact information to ensure student safety and accurate reporting to help run our school systems efficiently.
- To measure student progress and participation, we collect data such as attendance, grades and participation in school-sponsored extra-curricular activities to enable students to succeed.
- To improve our educational program, we collect results from local, state, and national assessments to provide teachers, administrators, and parents important information about student, program, and school performance.
- To better meet the needs of students, we also collect surveys and other feedback to improve teaching and learning and address other issues important to students and their families.
To learn more about which student data are shared and with whom, please visit our student data and applications database >>
How is Student Data Protected?
- We follow all federal and state education privacy laws and adhere to privacy and security policies. For example, the Family Education Rights and Privacy Act (FERPA) gives parents rights related to their children’s education records and personally identifiable information.
- When we use an online service provider or process or store data, they must adhere to federal and state privacy laws. We also expect them to use current security protocols and technology.
School Code Required Notice: Social Networking Passwords
The District may not request or require a student to provide a password or other related account information in order to gain access to the student’s account or profile on a social networking website if the district has reasonable cause to believe that the student’s account on a social networking website contains evidence that the student has violated a disciplinary rule or policy.
Illinois Student Online Personal Protection Act (SOPPA)
SOPPA, effective July 1, 2021, requires school districts to when collected by educational technology companies, and that data is used for beneficial purposes only (105 ILCS 85). School districts must:
- Annually post a list of all operators of online services or applications utilized by the district.
- Annually post all data elements that the school collects, maintains, or discloses to any entity. This information must also explain how the school uses the data, and to whom and why it discloses the data.
- Post contracts for each operator within 10 days of signing.
- Annually post subcontractors for each operator.
- Post the process for how parents can exercise their rights to inspect, review and correct information maintained by the school, operator, or ISBE.
- Post data breaches within 10 days and notify parents within 30 days.
- Maintain reasonable security procedures and practices. Agreements with vendors in which information is shared must include a provision that the vendor maintains reasonable security procedures and practices.
Family Educational Rights and Privacy Act (FERPA)
FERPA is a federal law that protects the privacy of student education records. The law applies to all schools that receive funds from the U.S. Department of Education. FERPA gives parents certain rights with respect to their children’s education records. These rights transfer to the student when he or she reaches the age of 18 or attends a school beyond the high school level.
Children’s Online Privacy Protection Act (COPPA)
The primary goal of COPPA is to place parents in control over what information is collected from young children. The applies to operators of commercial websites and online services (including mobile apps) directed to children under 13 that collect, use, or disclose personal information from children, and operators of general audience websites or online services with actual knowledge that they are collecting, using, or disclosing personal information from children under 13. The Rule also applies to websites or online services that have actual knowledge that they are collecting personal information directly from users of another website or online service directed to children.
Children’s Internet Protection Act (CIPA)
CIPA is a federal law enacted by Congress in 2000 to address concerns about children’s access to obscene or harmful content over the Internet. CIPA imposes certain requirements on schools or libraries that receive discounts for Internet access or internal connections through the E-rate program.
Protection of Pupil Rights Amendment (PPRA)
PPRA is a federal law that applies to programs that receive funding from the U.S. Department of Education and is intended to protect the rights of parents and students in two ways:
- it seeks to ensure that schools and contractors make instructional materials available for inspection by parents if those materials will be used in connection with an ED-funded survey, analysis, or evaluation in which their children participate; and
- that schools and contractors obtain written parental consent before minor students are required to participate in any ED-funded survey, analysis, or evaluation that reveals certain information.