Cybersecurity » Laws and Regulations

Laws and Regulations

The Family Educational Rights and Privacy Act (FERPA) (20 U.S.C. § 1232g; 34 CFR Part 99) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education
COPPA imposes certain requirements on operators of websites or online services directed to children under 13 years of age, and on operators of other websites or online services that have actual knowledge that they are collecting personal information online from a child under 13 years of age.
The Children's Internet Protection Act (CIPA) was enacted by Congress in 2000 to address concerns
about children's access to obscene or harmful content over the Internet.
PPRA (20 U.S.C. § 1232h, 34 CFR Part 98) affords parents of students certain rights regarding, among
other things, participation in surveys, the collection and use of information for marketing purposes, and
certain physical exams.

Amends the Communications Act of 1934 to require the Federal Communications Commission (FCC) to issue regulations for promoting a safe internet for children.

HIPAA Privacy Regulations are federal laws that govern the use and disclosure of confidential health information.
The Healthy Meals for Healthy Americans Act of 1994, PL 103-448, amended Section 9(b)(2)(C) of the National School Lunch Act (NSLA) (42 USC 1751(b)(2)(C)) to allow, without consent, limited disclosure of information about free and reduced price meal or free milk eligibility.
Is a set of security standards formed in 2004 by Visa, MasterCard, Discover Financial Services, JCB International and American Express. Governed by the Payment Card Industry Security Standards Council (PCI SSC), the compliance scheme aims to secure credit and debit card transactions against data theft and fraud.
“David’s Law” requires school districts to include cyberbullying in their district bullying policies and notify a child’s parents if he or she is a victim or alleged aggressor of bullying. It allows for schools to collaborate with law enforcement when serious or life-threatening cyberbullying situations arise.
Security awareness training requirements for state employees.
* (Legal) Legal policies compile federal law, state law, and court decisions, providing the statutory context in which all other policies should be read.
     (Local) Local policies reflect decisions made by the board of trustees.