FERPA, Family Education Rights and Privacy Act, is a law protects the privacy of student education records. This law provides parents with specific rights in regards to their children’s educational records, until they reach the age of 18, or until attending post-secondary educational facilities. …show more content…
• Disclosure: any release of PII by a school to a third party; any type of access, release or transfer of the information for which consent is required before disclosure
• Educational records: all records related to a student maintained by the agency or institution; documents, computer media, video, film, photographs
SOX, Sarbanes-Oxley Act, Public Company Accounting Reform and Investor Protection Act, more commonly known as SOX was named after Senator Paul Sarbanes and Representative Michael Oxley. SOX’s main purpose is the protect shareholders and investors from financial fraud. It created increased corporate disclosure requirements, strict penalties for violations and has eleven (11) different titles:
1. Public Company Accounting Oversight Board (Title 1)
2. Auditor Independence (Title 2)
3. Corporate Responsibility (Title 3)
4. Enhanced Financial Disclosure (Title …show more content…
The purpose of COPPA is to protect children’s privacy on the Internet as the following:
• Child’s first and/or last name
• Child’s email address
• Child’s Social Security and/or telephone number
• Any information that permits someone to contact or identify the child
Universal viewers Web sites or online services, and those that have an isolated area for children, must also adhere to COPPA. Even though Web sites must post a privacy policy, parents can apply parental controls on many Web sites, however, many children state they are over the age of thirteen (13), or eighteen (18), depending on the Web site.
In order for our facility to remain in compliant with these laws, we must consider where child information is located on our premises, how it is kept secure and how we transfer or transmit any of the information. Our organization not only needs to maintain security of such information, we must also comply with confidentiality, integrity and availability through other laws, standards and