DGCSTF - Federal Laws

Federal Laws

PVSchools is accountable for the security of their students’ and employee's information, even when it is managed by an outside vendor—thus, we have to be aware of the federal laws that guide the collection, use, and storage of data about students and employees. Relevant laws include, but are not limited to; FOIA, FERPA, HIPAA, PCI, CIPA, COPPA, PPRA, IDEA, etc..

In navigating some federal laws, PV utilizes the guidelines prepared by COSN (Consortium of School Networks).

Data governance is not an easy task in understanding and implementing the many complicated laws that have been instilled over the years. This section of PV's Data Governance web site attempts to make sense of the three major one's.

Family Educational Rights and Privacy Act (FERPA) (the over-arching federal law)

FERPA Stoplight
IDEA and FERPA - side by side comparison

Children's Online Privacy Protection Act (COPPA) explained

Protection of Pupil Rights Amendment (RA

best practices for protecting student and family rights under PPRA

Additionally, the following laws and regulations are discussed, as data governance and privacy is sometimes intertwined with;

Freedom of Information Act (FOIA)

regarding student data, PV complies with FOIA through Directory Information

Children's Internet Protection Act

PCI (a standard/guidance by the Payment Card Industry - think paying for books, lunch room, etc..)

Health Insurance Portability and Accountability Act (HIPPA) (health records of students, employees, parents, all of us)

where FERPA and HIPPA may overlap

Joint Guidance on the Application of the Family Educational Rights and Privacy Act (FERPA) And the Health Insurance Portability and Accountability Act of 1996 (HIPAA) To Student Health Records - Updated Dec 2019

Report abuse