The Evolution of the Student Data Privacy and Security Paradigm:
A RESOURCE FOR EDUCATION POLICYMAKERS AND PRACTITIONERS
… This publication first examines data privacy and security approaches in the financial services, healthcare, and software sectors. A landscape analysis of these three sectors is intended to help states, districts, and schools see how common issues are addressed in other fields as they consider how to best to address privacy and security in their unique contexts. The paper then makes recommendations regarding best practice standards for use in districts and schools
The District of Massachusetts’s decision in Yershov v. Gannett Satellite Information Network, Inc., 1:14-cv-13112-FDS (D. Mass. May 15, 2015), adds additional fuel to the debate among the courts as to whether a unique device identifier may constitute personally identifiable information (PII) and whether a “subscription” requires payment under the Video Privacy Protection Act (VPPA).
Plaintiff Alexander Yershov filed suit against defendant Gannett Satellite Information Network, Inc., alleging violations of the VPPA. Gannett publishes USA Today and has created the USA Today app, a mobile app designed to run on smartphones and other mobile devices and permit readers to view the online version of the newspaper. Users of the app can access video clips on various news, sports and entertainment topics. In his lawsuit, the plaintiff alleged that Gannett violated the VPPA by disclosing PII in the form of unique device identifiers to third parties such as Adobe Systems, Inc., an analytics company.
A federal class action claims online photo sharing service Shutterfly illegally uses facial recognition software to create a “face print” of anyone in its database of 20 billion photos.
Brian Norberg of Chicago says he’s never used Shutterfly or its subsidiary ThisLife and never had an account with either of them.
He claims they’re violating the Illinois Biometric Information Privacy Act by “collecting, storing, and using – without providing notice, obtaining informed written consent or publishing data retention policies – the biometrics of millions of unwitting individuals who are not users of Shutterfly.”