Privacy at NYU: Your Data & Your Rights

In a university setting like NYU, privacy is not just a legal concern. It is a matter of trust. Institutions manage large volumes of sensitive information, including student records, health data, and academic histories. As learning increasingly moves online and integrates third-party tools, new risks to personal privacy emerge. It becomes essential to understand how your data is handled, and what rights you have.

NYU is expected to follow federal regulations like FERPA, which requires your consent before your information is shared. Access to your data is limited by design, meaning that professors and staff can only view what they need to support your learning. For example, an instructor might see your academic progress but not your medical information. NYU also states that it does not sell student data, although it may rely on external platforms such as textbook providers. The university library system outlines additional protections in its privacy policy, which details how your information is kept confidential in accordance with the law. As a member of this community, staying informed helps you take an active role in protecting your own data.

Know Your Rights at NYU

As a student at NYU, you have the right to understand how your personal information is being handled. This includes knowing why your data is being collected, what categories of personal information are involved, who may have access to it, and how long it will be stored. These rights are not just formalities—they are designed to protect your autonomy and help you make informed decisions about your digital footprint within the university.

A simple way to remember your rights is through the 3W1H approach: Why your data is collected, What types of data are involved, Who it may be shared with, and How long it will be kept.

Here is an example of your rights at Perusall, where you can see data use in context, and also follows formal procedures in case of a data breach. In the event of a cyber threat, the university initiates a Cyber Incident Response process to contain and address the issue. Being aware of these protections not only helps you understand your rights. It also empowers you to ask better questions and expect better safeguards.

Physical Privacy on Campus

At NYU, privacy takes on a unique shape because the campus blends directly into the fabric of New York City. This open, urban setting means that safety and surveillance are shared responsibilities between NYU security teams and city public safety agencies. As the university says, "the city is your campus." Within this environment, NYU uses over three thousand security cameras placed across dormitories, entrances, elevators, and hallways to support community safety. Recently, the university expanded its system by adding twenty-five more cameras to residence halls.

However, it is important to understand NYU’s official stance on how this footage is used. These cameras are not watched continuously. Instead, footage is stored and only reviewed when necessary, such as in response to an incident. It is retained for a specific period and then deleted. While security measures are in place to protect students and staff, it’s also essential to stay informed about how those measures affect your sense of privacy in shared spaces.

Privacy is not just a legal concept—it shapes how we move through the world. Our sense of privacy, and the rights that protect it, affect everything from our mental well-being to our physical safety. It determines whether we feel free to seek help, access support, or simply make decisions without fear of being watched or judged. Privacy influences whether we can trust a system, speak honestly, or fully express who we are.

The Markkula Center captures it well: Privacy, as protection from excessive scrutiny, is necessary if individuals are to be free to be themselves. When we lose that protection, we risk losing not only control over our data but also over our choices, our dignity, and our ability to live authentically. That’s why privacy matters—not in theory, but in everyday life.

[P]rivacy, as protection from excessive scrutiny, is necessary if individuals are to be free to be themselves. - Markkula Center

At its core, privacy means having control over your own life—including the right to be left alone. In the United States, this right is supported by laws such as the Privacy Act, which protects individuals from unauthorized disclosure of certain records and gives you the right to request and amend personal data. The Freedom of Information Act, or FOIA, adds another layer by granting access to government-held information, helping to ensure transparency and accountability.

But privacy is not just about what others can or cannot do with your data. It is also about how you choose to engage with the systems around you. Whether interacting with apps, institutions, or services, you have options. Organizations like the Federal Trade Commission and the Electronic Frontier Foundation offer tools and resources to help you protect yourself, set boundaries, and make more informed choices. Knowing your rights is the first step. Choosing how and when to exercise them is where real agency begins.