FERPA Compliance – Family Education Rights and Privacy Act
What is FERPA?
Educational institutions need to comply with the Family Education Rights and Privacy Act (FERPA) of 1974, also called as the Buckley Amendment. FERPA is a United States federal law that protects privacy of students’ educational information and records. FERPA applies to all agencies and institutions that receive federal funds, under any program administered by the Department of Education, including elementary and secondary schools, colleges, and universities.
FERPA gives parents certain rights with respect to their children’s education records at elementary and secondary schools that are subject to FERPA’s requirements. These rights transfer to the student when he or she reaches the age of 18 or attends a school beyond the high school level. Students to whom the rights have transferred are called “eligible students.” The purposes of FERPA are twofold: to ensure that parents have access to their children’s educational records and to protect the privacy rights of parents and children by limiting access to these records without parental consent.
FERPA deals with:
- access to educational records
- parental right to inspect and review records
- amendment of records
Our services for FERPA Compliance
The compliance specialists at 24By7Security, Inc. can assist an educational institution in all tasks needed to be done, to comply with FERPA. Some of the services we provide for FERPA compliance are:
- Security Risk Assessment (NIST CSF or ISO/IEC 27001 based)
- FERPA assessment and compliance
- HIPAA security and privacy assessment and compliance
- Information security program improvement
- Creation of policies and procedures
- Social engineering testing
- Vulnerability assessments and penetration testing
- Physical security testing
- Security Awareness training