Data Privacy and Security
The Board of Regents adopted Part 121 of the Regulations of the Commissioner of Education on September 29, 2020. These rules will implement Education Law Section 2-d and provide guidance to educational agencies and their third-party contractors on ways to strengthen data privacy and security to protect student data and annual professional performance review data. It will apply to both charter and traditional public schools.
These Regulations govern the use of student Personally Identifiable Information (PII) in regards to third-party software vendors and platforms. All third-party contractors who collect and store student PII need to have a signed copy of the Cuba-Rushford Central School Parent’s Bill of Rights, in addition to a Supplemental Information Addendum that states publicly why they collect student PII, how it is stored and used, what happens to the collected data upon end of contract terms, and how data will be protected and encrypted. These forms will be posted on the CRCS website for viewing at any time.
For questions, concerns, or communication, please contact:
Alex Leyva
Data Protection Officer
District Vendor Agreements