Menu
  • Employee Resources
  • Language
    Stay

Student Data Privacy

The Douglas County School District cares deeply about the privacy of our students. We are committed to ensuring that their data is protected in every instance, and that we are in compliance with the Colorado Student Data Transparency and Security Act (HB 16-1423) and the Family Educational Rights and Privacy Act (FERPA).

DCSD has always protected student data. The new Colorado Student Data Transparency and Security Act is helping to reinforce this protection by focusing on:

  • Reinforcing protocol for using software and working with vendors
  • Transparency for our community on what student data the CDE and DCSD collects and how its collected
  • Bringing greater awareness of elements to look for on click-through contracts for free online apps

 

View a CDE summary of the Colorado Student Data Transparency and Security Act

View FAQ's on Student Data Privacy from the Parent Coalition for Student Privacy

School Resources

Privacy Laws

Colorado Student Data Privacy (HB-1423)

The Children's Internet Protection Act (CIPA)

The Children's Online Privacy Protection Act (COPPA)

Family Educational Rights and Privacy Act (FERPA)

What about HIPAA?

How does that affect school health services? The Health Insurance Portability and Accountability Act is another federal law that dictates how health records are to be handled. A school is subject to HIPPAA only if it provides medical care and electronically transmits health information as part of a “covered transaction” (e.g. billing) For most schools, HIPAA will only be an issue when communicating with a student’s medical provider. While school health records are not regulated by HIPAA, almost all medical practitioners are covered by HIPAA. ”Treatment purposes” is one of the exceptions: a practitioner may relay or clarify treatment orders to individuals involved in the treatment of that patient, such as to the school nurse without obtaining authorization of the student or parent. Best practice, however, is that the parent/guardian signs a release of information allowing communication between provider and the school. Protection of personally identifiable health information contained in medical or treatment reports from an outside provider is the responsibility of the requester. Ideally the school nurse summarizes the educationally relevant information from the outside record source into the student’s cumulative health record and then destroys the outside record.

Documents

Data Protection Addendum (download Word document)