FERPA was enacted by Congress to protect the privacy of students and their parents. The act is designed to ensure that students and parents of students may obtain access to the student's educational records and challenge the content or release of such records to third parties.
COPPA imposes certain requirements on operators of websites or online services directed to children under 13 years of age, and on operators of other websites or online services that have actual knowledge that they are collecting personal information online from a child under 13 years of age
CIPA - Child Information Protection Act (Federal)
Schools and libraries subject to CIPA may not receive the discounts offered by the E-rate program unless they certify that they have an Internet safety policy that includes technology protection measures. The protection measures must block or filter Internet access to pictures that are: (a) obscene; (b) child pornography; or (c) harmful to minors (for computers that are accessed by minors).
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient's consent or knowledge.
The Protection of Pupil Rights Amendment (PPRA) applies to the programs and activities of a state education agency (SEA), local education agency (LEA), or other recipient of funds under any program funded by the U.S. Department of Education. It governs the administration to students of a survey, analysis, or evaluation that concerns one or more of eight protected areas.
The Individuals with Disabilities Education Act (IDEA) ensures that all children with disabilities are entitled to a free appropriate public education to meet their unique needs and prepare them for further education, employment and independent living.
Colorado’s Student Data Transparency and Security Act adds to existing laws pertaining to student data privacy and security. It adopts additional duties that the State Board of Education (State Board), Department of Education (CDE), and Local Education Providers (LEPs), a term that includes School Districts, Boards of Cooperative Services, and Charter Schools, must all comply with. The purpose of this law is to increase the transparency and security of all Student Personally Identifiable Information (Student PII) that CDE and LEPs collect and maintain.
CDPA - Colorado Consumer Data Privacy Act (Colorado)
Colorado law outlines the requirements for data breaches, as well as notification guidelines for public and media.
CDSSA - Claire Davis School Safety Act (Colorado)
This Act imposes a limited waiver of sovereign immunity for schools if a school fails to exercise "reasonable care" to protect all students, faculty and staff from "reasonably foreseeable" acts of violence that occurs at school or a school-sponsored activity.