Student Online Personal Protection Act (SOPPA)
The Student Online Personal Protection Act, or SOPPA, is the data privacy law that regulates student data collection and use by schools, the Illinois State Board of Education, and third-party vendors. As part of SOPPA, these vendors must enter into Data Privacy Agreements (DPA) with each district they work with. These agreements outline what data is stored, how it is protected, what the company can and cannot do with that data, and what they will do in the event of a data breach.
Important Data Privacy Laws
Student Online Personal Protection Act (SOPPA): Guarantees that student data is protected when collected by educational technology companies, and that data is used for beneficial purposes only.
Children’s Online Privacy Protection Act (COPPA): Restricts the collection of personal information from children under 13 by companies operating websites, games, mobile applications, and digital services that are directed to children or that collect personal information from individuals known to be children.
Children’s Internet Protection Act (CIPA): Imposes certain requirements on schools that utilize the federal E-Rate program to receive discounts for internet access and other technology services, or that receive federal grants for other technology expenses.
Family Educational Rights and Privacy Act (FERPA): Governs information in a student’s education record, restricting access and use of student information