24/7 Teach
Contact
Introduction to Cybersecurity
Lesson 11 of 15

Lesson 11

Lesson 4.2 - Be Accountable: Protecting Student Data & School Networks

Introduction to Cybersecurity · 2 min read

In this lesson, you will…

  • Understand the legal and ethical responsibilities of protecting student data.

  • Apply your understanding of your legal responsibilities under FERPA and COPPA to improve your practice.

INTRODUCTION

Cybersecurity isn’t just a good habit, it’s the law. As educators and school staff, you are legally responsible for protecting sensitive student information every day.

When we fail to protect that data, the consequences aren't just technical, they are legal and ethical.

In this lesson, you’ll learn about two key laws that protect student data: FERPA and COPPA.

Understanding and following these laws keeps you and your students safe and keeps your school compliant.

ACTIVITY READING

FERPA & COPPA

Click to expand each section to learn more.

  • Family Educational Rights and Privacy Act.

    Purpose:
    Protects the privacy of student education records.

    Key Points:

    • Applies to all schools receiving U.S. federal funding.

    • Gives parents (and students 18+) the right to access, review, and request correction of student records.

    • Limits who can see or share student records without written consent.

    For School Staff:

    • Never share student grades, attendance, health records, or personal info with unauthorized people.

    • Always follow district policies for storing and sharing student data securely.

    Verify identities before discussing student info by phone or email.

  • Children’s Online Privacy Protection Act.

    Purpose:
    Protects the privacy of children under 13 who use online services or apps.

    Key Points:

    • Requires parental consent before collecting personal information (like names, photos, or school info) from kids under 13.

    • Applies to websites, apps, and online tools used in schools.

    For School Staff:

    • Make sure any online tool you use with students under 13 is approved by your district and COPPA-compliant.

    • Never sign students up for online services without district approval and parental consent where needed.

    Be cautious of free tools — even if they seem helpful, they must comply with privacy laws.

PAUSE TO PROCESS

Take a moment to recall what you have learnt.

When you are ready, click the button to begin the activity.

REVISITING THE READING

By understanding FERPA and COPPA, you’re not just protecting your school from legal trouble. You’re protecting your students’ trust, safety and future.

Legal compliance is one more way you keep your school community strong and secure.

Even when it’s not convenient, even when someone else is pressuring you, protecting student data is both a legal responsibility and a promise to your students and their families. Think of yourself as a guardian of trust and safety.

JOIN THE CONVERSATION

Think about a time when you used or shared student information in a way that may not have followed best practices, even unintentionally.

What would you do differently now that you understand FERPA and COPPA more clearly?

What steps could your school take to make legal compliance easier for all staff?