A totally free index of Internet resources for the K-12 Community.
GDPR And Your School
GDPR, the General Data Protection Regulation, is the a set of guidelines that went into effect on May 25, 2018. It dictates how individuals, companies, and schools may acquire, utilize, store, and delete the personal data of European Union (EU) users.
These regulations cover both on-line and internal data processing systems.
You’ll find information here on explaining GDPR and how it affects your school and classroom, how it’s enforced, and what you can do to make your web site(s) and internal systems GDPR complaint.
This page is mainly aimed at people outside the EU who are trying to understand GDPR and its compliance.
When in doubt, check with your IT or legal department to see what policies are in place for your school.
Here's a good explanation of how the GDPR views personal data vs. how companies & schools have traditionally thought of personal data. From the article... First, we need to get used to the term "personal data" instead of "PII" (personally identifiable information). Personal data is much broader than PII — it applies to anything that… learn more
While this article is on the technical side, it lays out a number of steps you or your school IT people can take ahead of time to be prepared for a data breach. Think you don't need a plan? What happens when some student gets into the school systems and changes everyone's grade? Data breaches… learn more
This article looks at the GDPR and answers the question of how the EU can fine a U.S. based web site. The short answer is that "EU regulators can fine U.S. companies for violating GDPR, and they can do it [only] with the help of U.S. authorities." The odds of your local school or classroom… learn more
This article posits that both K-12 and higher education institutions across the United States should be prepared for GDPR — the European Union's new General Data Protection Regulation — which went into effect May 25. Many U.S. educators and administrators don't think GDPR affects them because they live outside Europe. However, any time an educator… learn more
The GDPR rules apply to everyone who interacts with or has data stored on your web sites or internal systems. This includes current and former students, parents, teachers, staff, administrators, outside vendors and contractors. The GDPR rules apply to everyone. learn more
This post includes general information for how the GDPR affects small websites and the steps needed to stay compliant. While some of the suggestions are specific to WordPress, most of the information can be applied to any school or personal web site. learn more
This post by Punit Bhatia details the eight data subject rights defined in the GDPR. They are the ... right to information right to access right to rectification right to withdraw consent right to object right to object to automated processing right to be forgotten right for data portability learn more