The Family Educational Rights and Privacy Act (FERPA) is a federal law enacted in 1974 that protects the privacy of student education records. The UNC System policy manual outlines FERPA in Section 700.2 of the UNC Policy Manual. FERPA informs the way we access, utilize, and disclose student data. Directory Information is student information that can be disclosed without prior written consent because it is generally not considered harmful or an invasion of privacy if released, but institutions must allow students to opt out, which prevents the school from sharing any directory information publicly. Any information that is not classified as directory information is protected and subject to the following guidelines:
- Access to Records: The right to access student information is only for legitimate educational purposes. This means you should only view records necessary for your role.
- Handling Requests: Students have the right to request access to their records and ask for corrections if they believe there are inaccuracies.
- Information Disclosure: Without explicit consent from the student, personally identifiable information from their records cannot be disclosed. This includes sharing information with parents, other students, or external parties.
- Technology Utilization: The technology utilized to store and transmit student information must conform to FERPA requirements to protect student data.
- Secure Disposal of Student Records: Secure methods, such as shredding paper records and securely deleting digital files, must be used to ensure that no personally identifiable student information is exposed.
- Training and Awareness: Regular training on FERPA regulations is crucial to prevent accidental data breaches and ensure all staff members are aware of their responsibilities. FERPA training resources are available in Cornerstone as well as on the US Department of Education website.
More information about FERPA regulations can be found in this presentation: FERPA and Data Sharing.pptx