Ed Law 2-d Overview

Personally Identifiable Information (PII)

Education Law Section 2-d and Part 121 of the Commissioner’s Regulations outline requirements for educational agencies and their third-party contractors to strengthen data privacy and security in order to protect student and annual teacher/principal professional performance review personally identifiable information or PII. Please look below to find resources that can assist you with understanding personally identifiable information or PII.

Data Protection Planning - PII.pdf

Personally Identifiable Information (PII) - Data Protection and Planning RIC one Resource

Protection of PII Overview.pdf

Protection of Personally Identifiable Information (PII) - RIC one Resource

District Website Requirements

Having district staff, students, and other stakeholders understand the law and how to protect data is very important. Education Law Section 2-d and Part 121 of the Commissioner’s Regulations requirements state there are certain items that need to be posted publicly on an educational agency's website. Please look below to find resources that can assist you with knowing what is needed to be on your district data security and privacy webpage.

Data Security and Privacy Planning - District Website Checklist_ May 2023.pdf

Communicating About the Protection of Data/Website Checklist - Data Privacy and Security Planning RIC one Resource

nysed-privacy-office-website-monitoring-memo-7.19.23.pdf

Website Monitoring Memo 7/19/2023 - NYSED Resource

SCRIC Sample Website for Districts- Data Security and Privacy.pdf

District Data Security and Privacy Website Requirements - SCRIC Resource

Data Protection Officer (DPO)

Each educational agency must designate a Data Protection Officer (DPO) to be responsible for the implementation of the policies and procedures required in Education Law 2-d. The designee will also serve as the point of contact for data security and privacy for the educational agency. Please look below to find resources that can assist you with knowing what is needed to be on your district DPO.

Data Protection Planning - DPO.pdf

Data Protection Officer - Data Protection and Planning RIC one Resource

Data_Protection_Officer-Toolkit.pdf

Data Protection Officer Toolkit - Data Protection and Planning RIC one Resource

Helpful links:

Frequently Asked Questions for DPOs

Contact Information:

New York State Education Department - Chief Privacy Officer

Address: 89 Washington Avenue, EB 152, Albany, NY 12234

Phone: 518-474-0937
Email: Privacy@nysed.gov

NYSED

New York State Education Department's Data Security and Privacy helpful information and resources.

Online Privacy and Safety Resources

Annual Reports