• I.  Instructional Technology and online (3rd Party) Compliance with Education Law Section 2d

    Seneca Falls CSD Online Program Usage and Privacy Policies 

    1. Access to Student Records:

      Family Educational Rights and Privacy Act of 1974 (FERPA):  Under its provisions, parents/guardians and noncustodial parent(s), whose rights are not limited by court order or formal agreement, of a student under eighteen (18), or a student who is eighteen (18) years of age or older or who is attending an institution of post-secondary education, have a right to inspect and review any and all education records maintained by the School District.
    2. Release of Student Directory Information:

      Under FERPA, unless otherwise exempted in accordance with law and regulation, the District may release personally identifiable information (PII) contained in student education records only if it has received a "signed and dated written consent" from a parent or eligible student. Signed and dated written consent may include a record and signature in electronic form provided that such signature: a) Identifies and authenticates a particular person as the source of the electronic consent; and b) Indicates such person's approval of the information contained in the electronic consent. Exceptions Without the consent of a parent or eligible student, a district may release a student's information or records when it is:
      • Directory Information and Limited Directory Information Directory information is information contained in an education record of a student that would not generally be considered harmful or an invasion of privacy if disclosed. Limited Directory Information Disclosure means that the District may limit disclosure of its designated directory information to specific parties, for specific purposes, or both. The intent is to allow schools the option to implement policies that allow for the disclosure of student information for uses such as yearbooks, but restrict disclosure for more potentially dangerous purposes. The District shall limit disclosure of its designated directory information as otherwise specified in its public notice to parents of students in attendance and eligible students in attendance.
    3. Student Privacy Pledge (https://studentprivacypledge.org/signatories/)

      • The Future of Privacy Forum and the Software & Information Industry Association developed the Student Privacy Pledge in 2014. The Pledge is legally enforceable: by taking the Pledge, a company is making a public statement of their practices with respect to student data. Accountability comes from the Federal Trade Commission (FTC), which has the authority to bring civil enforcement actions against companies who do not adhere to their public statements of practices.  The pledge by the 3rd party company is to safeguard student privacy regarding the collection, maintenance, and use of student personal information. The commitments are intended to concisely detail existing federal law and regulatory guidance regarding the collection and handling of student data, and to encourage service providers to more clearly articulate these practices.
    4. Parent Notification of Children’s Online Privacy Protection Act (COPPA):

      The Seneca Falls Central School District is committed to providing your student with the most effective web-based tools and applications for learning. The Children’s Online Privacy Protection Act (COPPA) requires parental notification and consent for student use of district-approved online resources for instructional purposes. The law permits schools to act as the parent’s agent and can consent to the collection of student information on the parent’s behalf with parent permission.

      A complete list of the programs with the privacy policy and terms of service for each can be found below. The Seneca Falls CSD creates student accounts for several contracted computer software applications and web-based services such as Google Apps for Education, i-Ready, and Discovery Streaming. By contract, these vendors have agreed to protect student privacy and adhere to COPPA regulations.

      Any additional web-based educational programs and services which our schools may add during the upcoming academic year will be posted here shortly after purchase.

    Learn more about new laws regarding data privacy and security from the Mohawk Regional Information Center (RIC)

  • II. CONTROLLING AND MAINTAINING SYSTEM SECURITY

    District Information Technology Policies for Control and Management of Data and Property

    1. Section 1000: 1.1.5 School Sponsored Media: SFCSD Website Policy #3115

    2. Section 3000: 2.8.1 Use of School-Owned Materials and Equipment Policy #3281

    3. Section 3000: 3.1 Public Access to Records Policy #3310

    4. Section 3000: 3.2 Confidentiality of Computerized Information Policy #3320

    5. Section 5000: 6.2.1 Accounting of Fixed Assets Policy #5621

    6. Section 5000: 6.8.6 Information Security Breach Notification Policy #5686

    7. Section 6000: 1.0 Use of Email in the School District Policy #6000

    8. Section 6000: 1.1.5 Staff Use of Electronic Communication Devices Policy #6110

    9. Section 6000: 6.4.8 Staff Use of Computerized Information Resources Policy #6480

    10. Section 7000: 1.0 Student Use of Computerized Information Resources Policy #7000

    11. Section 7000: Form: Acceptable Use Policy UPDATE

    12. Section 7000: 2.4 Student Records: Access and Challenge (FERPA) Policy #7240

    13. Section 7000: 2.4.R Student Records: Access and Challenge Regulation #7240R

    14. Section 7000: 3.6.2 Student Use of Electronic Communication Devices Policy #7362

    15. Section 7000: 5.1.4 Student Welfare: Health Records Policy #7514

    16. Section 7000: 5.7 Student Privacy, Parental Access to Information Policy #7570

    17. Section 7000: 5.7F Student Privacy Notice Policy #7570F

    18. Section 8000: 2.71. Instructional Technology Policy #8270

    19. Section 8000: 2.7.1 Electronic Communication and Internet Access Policy #8271

    20. Section 8000: 2.7.1R Electronic Communication and Internet Access Regulation #8271R

    21. Section 8000: 3.6 Computer Software Lending Policy #8360

  • III. INFORMATION TECHNOLOGY PROCEDURES TO PROTECT AND CONTROL ACCESS

    1. Allowing only authorized users to access networks remotely (Entry Checklist & Permissions Audit)

    2. Granting access to IT resources that are necessary to fulfill job responsibilities (Permissions Audit)

    3. Implementing an Acceptable Use Policy (Staff and Student Acceptable Use Policy)

    4. Establishing unique user logins and passwords for each user (Permissions Audit)

    5. Maintaining physical controls over IT property (Inventory Spreadsheet)

    6. Employee departure checklist (Existing Checklist)