What is the Family Educational Rights and Privacy Act Risk Assessments?
The Family Educational Rights and Privacy Act (FERPA) is a federal privacy law that gives parents access and protection concerning their children’s education records. This risk assessment also allows parents to control how the educational institute discloses the information. Entities responsible for following FERPA include any school that receives funds from the U.S. Department of Education. It also dictates how state agencies can transmit student data to federal agencies. Protected school information includes:
- Grades
- Report Cards
- Transcripts
- Disciplinary Behavior
- School Work
- Contact
- Family information
- Billing information,
- Any personally identifiable information.
Requirements for Schools
The FERPA Risk Assessments forces all educational institutes responsible for protecting student academic records with four measures:
- Policy & Governance – Develop a comprehensive data governance plan, including personnel security, a plan for an event to shut down necessary services, incident handling, and audit/compliance monitoring.
- Physical Security – Secure physical access to student data, including access controls, authentication, and asset tagging/tracking.
- Technical Security – Secure storage, transmission, and access to data, including network mapping, layered defense, secure configurations, firewall/intrusion detection/prevention systems, automated vulnerability scans, patch management, encryption, and mobile device management.
INSI’s FERPA Privacy Act Risk Assessments
Do you need a FERPA educational risk assessment performed? INSI has partnered with Cybriant, which conducts the FERPA educational risk assessments while INSI addresses the vulnerabilities. It is an entirely turnkey FERPA solution.
Call INSI for All Your Security Needs, Including FERPA Risk Assessments
INSI is an Atlanta-based IT support provider and Cybriant Managed Security Channel Reseller. Together, we can help you determine the best services specific to your managed security needs.
Contact INSI: 770-387-2424, option 2 for all of your IT security needs, including Privacy Act Risk Assessments
About INSI: The Best MSP in Atlanta!
INSI is the Top Managed Service Provider in Atlanta. We offer complete IT support packages for clients without internal IT and a la carte customized packages for small IT departments. Most importantly, we only charge the client for the exact service and level they actually need. In addition, this unique support model has proven to save the client money and greatly complemented the client’s internal IT strengths.
About the Author
Deborah Frazier is the author of IT Outsourcing Secrets – A Small Business Guide to Compare IT Support Companies. With nearly 20 years of experience consulting small and medium-sized businesses on their IT support needs, she brings a wealth of knowledge to INSI as Head of Marketing and Sales. If you like this article and want to get notified when a new article is posted, click here.
