Cybersecurity » Technology Laws & Regulations

Technology Laws & Regulations

The Family Educational Rights and Privacy Act (FERPA) (20 U.S.C. § 1232g; 34 CFR Part 99) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education
States that public school district employees have an obligation to correctly and efficiently maintain the records in their possession to comply with standards for public access, parent/student access, and legal or audit purposes.
COPPA imposes certain requirements on operators of websites or online services directed to children under 13 years of age, and on operators of other websites or online services that have actual knowledge that they are collecting personal information online from a child under 13 years of age.
The Children's Internet Protection Act (CIPA) was enacted by Congress in 2000 to address concerns
about children's access to obscene or harmful content over the Internet.
PPRA (20 U.S.C. § 1232h, 34 CFR Part 98) affords parents of students certain rights regarding, among
other things, participation in surveys, the collection and use of information for marketing purposes, and
certain physical exams.

Amends the Communications Act of 1934 to require the Federal Communications Commission (FCC) to issue regulations for promoting a safe internet for children.

HIPAA Privacy Regulations are federal laws that govern the use and disclosure of confidential health information.
The Healthy Meals for Healthy Americans Act of 1994, PL 103-448, amended Section 9(b)(2)(C) of the National School Lunch Act (NSLA) (42 USC 1751(b)(2)(C)) to allow, without consent, limited disclosure of information about the free and reduced-price meal or free milk eligibility.
Is a set of security standards formed in 2004 by Visa, MasterCard, Discover Financial Services, JCB International and American Express. Governed by the Payment Card Industry Security Standards Council (PCI SSC), the compliance scheme aims to secure credit and debit card transactions against data theft and fraud.
“David’s Law” requires school districts to include cyberbullying in their district bullying policies and notify a child’s parents if he or she is a victim or alleged aggressor of bullying. It allows for schools to collaborate with law enforcement when serious or life-threatening cyberbullying situations arise.
Security awareness training requirements for state employees.
Relating to a requirement that a school district adopts a cybersecurity policy.
SECTION 1.  Subtitle A, Title 6, Government Code, is amended by adding Chapter 620 to read as follows: CHAPTER 620.  USE OF CERTAIN SOCIAL MEDIA APPLICATIONS AND SERVICES ON GOVERNMENTAL ENTITY DEVICES PROHIBITED Sec. 620.001.  DEFINITIONS. In this chapter:(1)  "Covered application" means:  (A)  the social media service TikTok or any successor application or service developed or provided by ByteDance Limited or an entity owned by ByteDance Limited; or  (B)  a social media application or service specified by the proclamation of the governor under Section 620.005.
The Department of Information Resources (DIR) developed the Texas Cybersecurity Framework (TCF) in collaboration with other government entities and the private sector. It uses a common language to address and manage cybersecurity risk in a cost-effective way, based on business needs, without placing additional regulatory requirements on agencies. 
Board Policy Manuals - Technology
*(Legal) Legal policies compile federal law, state law, and court decisions, providing the statutory context in which all other policies should be read.
     *(Local) Local policies reflect decisions made by the board of trustees.
*Content is monitored and updated to meet state/local laws and regulations. For site, information contact Chris Davis-Cybersecurity Specialist