Data Privacy and Security

Student data security is important to us. Iroquois Co. CUSD 9 strives to provide our students the best learning experience possible. This requires the district to partner with companies to provide services such as digital curriculum, testing and various other instructional supports. Some of these supports require our district to share certain student data in order to allow the service to function properly. This can include directory data such as name and schedule information to allow for secure student log in and class rostering. As part of the process, Iroquois Co. CUSD 9 verifies the vendors are as FERPA, COPPA and Illinois Online Personal Protection Act  (SOPPA) compliant. Additionally, only the minimum amount of data required to maintain service functionality for each application.

What is SOPPA?

What happens to the student data that we send to a third party vendor? Information like names, birthdates, etc. may be provided by Iroquois Co. CUSD 9 to a third party like IXL, NWEA MAP, etc. What protections do those companies have in place to make sure that our student's data is not sold or freely given to others? This is exactly what SOPPA looks to address. As part of SOPPA, these companies must enter into Data Privacy Agreements (DPA) with each district they work with. These agreements outline what data is stored, how it is protected, what the company can and cannot do with that data, and what they will do in the event of a data breach. As part of this law, the district is in the process of completing our list of compliant services we use. The list can be viewed  here.
Effective July 1, 2021, school districts will be required by the Student Online Personal Protection Act (SOPPA) to provide additional guarantees that student data is protected when collected by educational technology companies, and that data is used for beneficial purposes only (105 ILCS 85).

Full text of SOPPA

What are Data Privacy Agreements (DPA)?

Iroquois Co. CUSD 9 leverages the Student Data Privacy Consortium (SDPC), which is an unique collaborative of schools, districts, regional, territories and state agencies, policy makers, trade organizations and marketplace providers addressing real-world, adaptable, and implementable solutions to growing data privacy concerns. If you would like to read more about the SDPC, click here. Through the SDPC we enter into contracts with 3rd party vendors who handle our student's data. If you would like to view the DPAs that Iroquois Co. CUSD 9 currently holds, please click the following link: Iroquois Co. CUSD 9 Data Privacy Agreements.

Important Data Privacy Laws

Student Online Personal Protection Act (SOPPA): Guarantees that student data is protected when collected by educational technology companies, and that data is used for beneficial purposes only.

Children’s Online Privacy Protection Act (COPPA): Restricts the collection of personal information from children under 13 by companies operating websites, games, mobile applications, and digital services that are directed to children or that collect personal information from individuals known to be children.

Children’s Internet Protection Act (CIPA): Imposes certain requirements on schools that utilize the federal E-Rate program to receive discounts for internet access and other technology services, or that receive federal grants for other technology expenses.

Family Educational Rights and Privacy Act (FERPA): Governs information in a student’s education record, restricting access and use of student information

Helpful Data Privacy Law Explainer Videos