Bill of Rights for Data Privacy and Security Clause Samples
The Bill of Rights for Data Privacy and Security clause establishes a set of fundamental protections and entitlements for individuals regarding the collection, use, and safeguarding of their personal data. Typically, this clause outlines rights such as the ability to access, correct, or delete personal information, as well as requirements for organizations to implement security measures and obtain consent before processing data. Its core function is to empower individuals with control over their personal information and to ensure organizations handle data responsibly, thereby addressing concerns about privacy breaches and misuse of sensitive data.
Bill of Rights for Data Privacy and Security. As required by Education Law Section 2-d, the Parents Bill of Rights for Data Privacy and Security and the supplemental information for the Service Agreement are included as Exhibit A and Exhibit B, respectively, and incorporated into this DPA. Contractor shall complete and sign Exhibit B and append it to this DPA. Pursuant to Education Law Section 2-d, the EA is required to post the completed Exhibit B on its website.
Bill of Rights for Data Privacy and Security. The Lancaster Central School District is committed to protecting the privacy and security of student protected data and teacher and principal data. In accordance with New York Education Law Section 2-d and its implementing regulations, the District informs the school community of the following:
Bill of Rights for Data Privacy and Security. CRCS is committed to protecting the privacy and security of student data and teacher and principal data. In accordance with New York Education Law Section 2-d and its implementing regulations, CRCS informs the school community of the following:
Bill of Rights for Data Privacy and Security. The Enlarged City School District of Middletown is committed to protecting the privacy and security of student data and teacher and principal data. In accordance with New York Education Law Section 2-d and its implementing regulations, The Enlarged City School District of Middletown informs the school community of the following:
Bill of Rights for Data Privacy and Security. As required by Education Law Section 2-d, the Parents Bill of Rights for Data Privacy and Security and the supplemental information for the Service Agreement are included as Exhibit A and Exhibit B, respectively, and incorporated into this DPA. Contractor shall complete and sign Exhibit B and append it to this DPA. Pursuant to Education Law Section 2-d, JCSD is required to post the completed Exhibit B on its website.
Bill of Rights for Data Privacy and Security a. Contractor acknowledges that, pursuant to New York Education Law Section 2-d, (i) School must publish on your website a parents bill of rights for data privacy and security that includes the supplemental information described in Section 4(b) (“Supplemental Information”) concerning Contractor (“Bill of Rights”), and (ii) Contractor’s contract with School must include a copy of such Bill of Rights.
b. Supplemental Information for a third party contractor includes: i. the exclusive purposes for which the Student Data or Teacher or Principal data will be used by the third-party contractor, as defined in the contract;
ii. how the third-party contractor will ensure that the subcontractors, or other authorized persons or entities to whom the third-party contractor will disclose the Student Data or Teacher or Principal Data, if any, will abide by all applicable data protection and security requirements, including but not limited to those outlined in applicable state and federal laws and regulations (e.g., FERPA; New York Education Law Section 2-d);
iii. the duration of the contract, including the contract’s expiration date and a description of what will happen to the Student Data or Teacher or Principal Data upon expiration of the contract or other written agreement (e.g., whether, when and in what format it will be returned to the educational agency, and/or whether, when and how the data will be destroyed);
iv. if and how a parent, student, eligible student, teacher or principal may challenge the accuracy of the Student Data or Teacher or Principal Data that is collected;
v. where the Student Data or Teacher or Principal Data will be stored, described in such a manner as to protect data security, and the security protections taken to ensure such data will be protected and data security and privacy risks mitigated; and
vi. address how the data will be protected using Encryption while in motion and at rest.
Bill of Rights for Data Privacy and Security. BELFAST CENTRAL SCHOOL DISTRICT is committed to protecting the privacy and security of student data and teacher and principal data. In accordance with New York Education Law Section 2-d and its implementing regulations, BELFAST CENTRAL SCHOOL DISTRICT informs the school community of the following:
Bill of Rights for Data Privacy and Security. The ▇▇▇▇▇▇▇-▇▇▇▇▇▇▇▇ Central School District seeks to use current technology, including electronic storage, retrieval, and analysis of information about students’ education experience in the district, to enhance the opportunities for learning and to increase the efficiency of our district and school operations. The ▇▇▇▇▇▇▇-▇▇▇▇▇▇▇▇ Central School District seeks to insure that parents have information about how the District stores, retrieves, and uses information about students, and to meet all legal requirements for maintaining the privacy and security of protected student data and protected principal and teacher data, including Section 2-d of the New York State Education Law. To further these goals, the ▇▇▇▇▇▇▇-▇▇▇▇▇▇▇▇ Central School District has posted this Parents’ Bill of Rights for Data Privacy and Security.
Bill of Rights for Data Privacy and Security. The ▇▇▇▇▇▇▇▇ Central School District is committed to protecting the privacy and security of student data and teacher and principal data. In accordance with New York Education Law Section 2-d and its implementing regulations, the District informs the school community of the following: A student's personally identifiable information cannot be sold or released for any commercial purposes. Parents have the right to inspect and review the complete contents of their child's education record. State and federal laws protect the confidentiality of personally identifiable information, and safeguards associated with industry standards and best practices, including but not limited to encryption, firewalls, and password protection, must be in place when data is stored or transferred. A complete list of all student data elements collected by New York State is available for public review at the following website ▇▇▇▇://▇▇▇.▇▇▇▇▇.▇▇▇/student-data-privacy/student-data-inventory or by writing to the Office of Information and Reporting Services, New York State Education Department, Room ▇▇▇ ▇▇▇, ▇▇ ▇▇▇▇▇▇▇▇▇▇ ▇▇▇▇▇▇, ▇▇▇▇▇▇, ▇▇▇ ▇▇▇▇ ▇▇▇▇▇. Parents have the right to have complaints about possible breaches of student data addressed. Complaints should be directed in writing to Privacy Complaint, Chief Privacy Officer, New York State Education Department, ▇▇ ▇▇▇▇▇▇▇▇▇▇ ▇▇▇▇▇▇, ▇▇▇▇▇▇, ▇▇▇ ▇▇▇▇ ▇▇▇▇▇. Complaints may also be submitted using the form available at the following website ▇▇▇▇://▇▇▇.▇▇▇▇▇.▇▇▇/student-data-privacy/form/report-improper-disclosure.
Bill of Rights for Data Privacy and Security. As required by Education Law Section 2-d, the Parents Bill of Rights for Data Privacy and Security and the supplemental information for the Service Agreement are included as Exhibit A and Exhibit B, respectively, and incorporated into this DPA. Contractor shall complete and sign Exhibit B and append it to this DPA. Pursuant to Education Law Section 2-d, the EA is required to post the completed Exhibit B on its website. Pursuant to Education Law § 2-d and Section 121.3 of the Commissioner’s Regulations, the Educational Agency (EA) is required to post information to its website about its contracts with third-party contractors that will receive Personally Identifiable Information (PII). Description of the purpose(s) for which Contractor will receive/access PII We develop and sell online, web based OSHA 10 hour courses as well as other technical and life skill courses. The purpose for the access to PII is for students to obtain their OSHA 10 hour certification as well as complete our other courses Type of PII that Contractor will receive/access Check all that apply: ☒ Student PII ☐ APPR Data Contract Term Contract Start Date _ 10/4/2021 Contract End Date _ 10/3/2024 Subcontractor Written Agreement Requirement Contractor will not utilize subcontractors without a written contract that requires the subcontractors to adhere to, at a minimum, materially similar data protection obligations imposed on the contractor by state and federal laws and regulations, and the Contract. (check applicable option) ☒ Contractor will not utilize subcontractors. ☐ Contractor will utilize subcontractors. Challenges to Data Accuracy Parents, teachers or principals who seek to challenge the accuracy of PII will do so by contacting the EA. If a correction to data is deemed necessary, the EA will notify Contractor. Contractor agrees to facilitate such corrections within 21 days of receiving the EA’s written request. Secure Storage and Data Security Please describe where PII will be stored and the protections taken to ensure PII will be protected: (check all that apply) ☒ Using a cloud or infrastructure owned and hosted by a third party. The Educational Agency (EA) is required to ensure that all contracts with a third-party contractor include a Data Security and Privacy Plan, pursuant to Education Law § 2-d and Section 121.6 of the Commissioner’s Regulations. For every contract, the Contractor must complete the following or provide a plan that materially addresses its requirements, includ...