Skip to content

Discerning Data

  • About Us
  • Additional Resources
  • Contact Us

DISCERNING DATA

A Faegre Drinker Blog Covering the Latest in Privacy, Cybersecurity and Data Strategy

  • Privacy
  • Cybersecurity
  • Data Strategy
  • Disruptionware

U.S. Department of Education Issues Updated Student Privacy Guidance Following Federal Commission on School Safety Report

Share

On February 5, 2019, the U.S. Department of Education (ED) released new and important regulatory guidance entitled “School Resource Officers, School Law Enforcement Units, and the Family Educational Rights and Privacy Act.” This guidance document was prepared and issued in response to the December 2018 final report of the Federal Commission on School Safety (the Commission), which was established following the February 2018 shooting at Marjory Stoneman Douglas High School in Parkland, Florida. Among the findings of that final report was the following, which concerns threat assessment efforts in the nation’s schools:

“Suspicious activity reporting programs must incorporate appropriate privacy protections to ensure compliance with the Family Educational Rights and Privacy Act (FERPA) and the Health Insurance Portability and Accountability Act (HIPAA). However, confusion remains in some localities about whether and when student records can legally be shared during a health or safety emergency. Reducing this confusion can lead to greater compliance and appropriate reporting of threats to the safety of students and schools.”

The report further noted that with regard to identifying potential threats to school safety, multiple witnesses before the Commission reported frequent confusion regarding what information legally can be shared, and with whom, when it involves the behavior or mental health history of a student. Thus, one of the report’s specific recommendations was that ED clarify the parameters of information sharing between school staff, school resource officers (SROs) and school safety officers (SSOs), with special consideration and training regarding the privacy requirements of FERPA and HIPAA.

Intending to give school officials a better understanding of how FERPA specifically relates to circumstances that threaten the health or safety of individuals, and thus to empower such officials to act more quickly and decisively when challenges arise, the February 5, 2019, guidance from ED consolidates multiple prior guidance and technical assistance documents into a single resource. Among its more important points are the following:

  • SROs and other outside law enforcement officials are not automatically within the FERPA exception for “school officials” with “legitimate educational interests” in student records, but they may be designated as such if a school complies with the FERPA requirements for sharing student information with entities that perform outsourced institutional services or functions.
  • Schools may share with law enforcement officials any student information that has been properly designated as “directory information” under a FERPA-compliant directory information policy, provided that those students (or their parents if the students are under 18 years of age) have not opted out of such disclosures.
  • Under FERPA’s exception for health and safety emergencies, school administrators may disclose a student’s education records (or personally identifiable information contained in those records) to “appropriate parties” in order to address a specific and articulable threat. Moreover, this exception to FERPA’s general consent requirement permits such disclosures when necessary to protect the health or safety of the student or other individuals. Note, however, that this exception is limited to the period of the “significant and articulable emergency” and does not allow for a blanket release of personally identifiable information from a student’s education records. Additionally, an “appropriate party” under this exception is anyone whose knowledge of such information is necessary to protect the health or safety of the student or other persons.
  • FERPA applies to the disclosure of education records and personally identifiable information from education records that are maintained by the school, but does not prohibit a school official from releasing information about a student that was obtained through the school official’s personal knowledge or observation rather than from the student’s education records.

Read the full February 5, 2019, guidance from ED.

The material contained in this communication is informational, general in nature and does not constitute legal advice. The material contained in this communication should not be relied upon or used without consulting a lawyer to consider your specific circumstances. This communication was published on the date specified and may not include any changes in the topics, laws, rules or regulations covered. Receipt of this communication does not establish an attorney-client relationship. In some jurisdictions, this communication may be considered attorney advertising.

Receive Email Alerts to New Articles

SUBSCRIBE

February 27, 2019
Written by: Jonathan Tarnow
Category: ED, Education
Tags: FERPA, U.S. Department of Education

Post navigation

Previous Previous post: GAO Report Recommends Congress Consider Comprehensive Privacy Regulation
Next Next post: California Consumer Privacy Act

Search the Blog

Sign Up for Email Alerts

PODCASTS

Faegre Drinker on Law and Technology

©2023 Faegre Drinker Biddle & Reath LLP. All Rights Reserved. Lawyer Advertising.

  • About Us
  • Additional Resources
  • Contact Us
We use cookies to improve your experience with our website. By browsing our site, you are agreeing to the use of cookies. For more information about how we use cookies, please review our privacy policy and cookie policy. OK
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT