Student Online Personal Protection Act (SOPPA)
Student Data Privacy
Lake Forest School Districts 67 and 115 take the privacy of our students' data seriously. This page intends to make transparent that the Districts are working diligently to be compliant with the Student Online Personal Protection Act (SOPPA) that went into effect on July 1, 2021.
Important Data Privacy Laws
Family Educational Rights and Privacy Act (FERPA) - Governs information in a student’s education record, restricting access and use of student information.
Children’s Online Privacy Protection Act (COPPA) - Restricts the collection of personal information from children under 13 by companies operating websites, games, mobile applications, and digital services that are directed to children or that collect personal information from individuals known to be children.
Student Online Personal Protection Act (SOPPA) - Guarantees that student data is protected when collected by educational technology companies, and that data is used for beneficial purposes only. Children’s Internet Protection Act (CIPA) - Imposes certain requirements on schools that utilize the federal E-Rate program to receive discounts for internet access and other technology services, or that receive federal grants for other technology expenses
What is SOPPA?
What happens to the student data that we send to a third-party vendor? Information like names, birth dates, etc... may be provided by District 67 to a third party like IXL, NWEA MAP, etc... What protections do those companies have in place to make sure that our student's data is not sold or freely given to others? This is exactly what SOPPA looks to address.
As part of SOPPA, these companies must enter into Data Privacy Agreements (DPA) with each district they work with. These agreements outline what data is stored, how it is protected, what the company can and cannot do with that data, and what they will do in the event of a data breach.
Data Privacy Agreements (DPA)
Districts 67 and 115 leverage the Student Data Privacy Consortium (SDPC), which is a unique collaborative of schools, districts, regional, territories, state agencies, policymakers, trade organizations, and marketplace providers, addressing real-world, adaptable, and implementable solutions to growing data privacy concerns. If you would like to read more about the SDPC, click here.
To view Board Policy 7:345 please use the following links: