Skip to main content

Legal Notices and Resources

Bill of Rights for Data Privacy and Security (Parents' Bill of Rights)
Education Law § 2-d requires each educational agency in the State of New York to develop a Parents’ Bill of Rights for Data Privacy and Security and publish it on its website. 

NYSED Data Privacy and Security Policy
Education Law § 2-d requires each educational agency to publish its Data Privacy and Security Policy to its website.  The requirements for this policy can be found in both Education Law § 2-d and Part 121 of the Commissioner of Education's regulations.

Frequently Asked Questions
Questions and Answers About Data Privacy and Security

Student Information Requests from Military Recruiters, Institutions of Higher Education, and Prospective Employers
Requirements for public and non-public schools receiving ESSA funding - must share certain directory information with Military Recruiters, IHEs, and Prospective Employers

Annual Reports
Pursuant to NYS Education Law §2-d, the Chief Privacy Officer is required to issue an annual report on (1) data privacy and security activities and progress, (2) the number and disposition of reported breaches, if any, and (3) a summary of any complaints of possible breaches of student data or teacher or principal annual professional performance review data (PII).

NY Education Law Section 2-d Required Website Published Documents
Education Law § 2-d and Part 121 of the Commissioner of Education's Regulations require educational agencies to publish certain information to their websites.  Below are links to NYSED's publication of this information.

Determinations of the Chief Privacy Officer
Privacy Complaint Determinations issued by the Chief Privacy Officer from December 1, 2021.

Education Law Section 2-D Definitions

Online Privacy and Safety Resources
We know that parents, students and even educational agency staff may have questions related to the privacy and security of student data when these tools are used. If a district has made the decision to use online tools as part of a continuity of learning plan, it is the district’s responsibility to ensure compliance with all applicable laws and regulations, including FERPA, COPPA, IDEA, Education Law § 2-d, and the new Part 121 of the Commissioner of Education’s Regulations.

Data Privacy Day
Data Privacy Day is a national effort to empower people to protect their privacy, control their digital footprint and escalate the protection of privacy and data as everyone's priority, and is celebrated annually around the world on January 28 to increase awareness about the many ways personal information is collected, stored, used, and shared, and provide education about privacy practices that will enable individuals to protect their personal information.  

Public Forums - 2018
These forums took place in 2018 and this page is provided as an archive for informational purposes. The public forum comment period is now closed.