Data Security and Privacy
Ed Law §2-D & Data Privacy and Security
New York State Education Law §2-d Part 121 of the Commissioner’s Regulations requires each educational agency to publish the following information on their websites:
- Data Privacy and Security Policy
- Bill of Rights for Data Privacy and Security (Parents' Bill of Rights)
- An organized list of Software, subject to Ed Law 2-d, utilized by District
- Supplemental Information to the Contracts of Master Agreements entered into with third-party contractors
Below are links to Cooperstown Central School District's Data Privacy and Security Policy and Parent's Bill of Rights.
For each contract the District enters into with a third-party contractor that receives personally identifiable information (PII) or protected data, a signed copy of the parents' bill of rights and supplemental information is required and must be published. These documents are located in the District's Data Privacy Inventory Tool (DPIT), created by RIC One.
RIC One consists of 12 Regional Information Centers (RICs) that offer districts a family of services to support educators in implementing technology-rich learning experiences while ensuring that students’ privacy is not compromised. RIC One serves as an intermediary for Districts by hosting the service and by acquiring the required documentation from the vendors.
The Data Privacy Inventory Tool compiles a list of district software as required by Education Law §2-d Part 121 Regulations and provides a means for sharing the Data Sharing and Confidentiality Agreements entered into with our software vendors, the Parents' Bill of Rights signed by each vendor and the Supplemental Information provided by each vendor.
CooperstowN'S Data Privacy Inventory TOOL
The DPIT below lists the software products and applications the District currently uses and
- indicates how the product is procured (Contract Source); either through a BOCES or purchased (unless it is free) by the District,
- the contract expiration date, and
- a link or links to the Data Sharing and Confidentiality Agreement and executed Parents' Bill of Rights and Supplemental Information (Supporting Documentation).
UNauthorized disclosure or Security Breach
The School District values the protection of private information of individuals in accordance with applicable law and regulations. Further, the District is required to notify affected individuals when there has been or is reasonably believed to have been a compromise of the individual’s private information in compliance with the Information Security Breach and Notification Act and Board policy.
Student(s), Eligible Student(s), Parent(s), Teacher(s) or Principals and other District staff who have information indicating there has been a Breach or Unauthorized Disclosure of Protected Data may report that information to the Data Protection Officer, or DPO, by completing the form below.