1. Security of Records:
Ensure that all student records are securely stored and protected against unauthorized access, modification, and disclosure.
2. Access to Records:
Only authorized personnel should have access to student records and they must be careful not to disclose any confidential information without a legitimate educational purpose or written consent from the student’s parent or guardian.
3. Record Retention:
Keep accurate records of when, why, and how student records were accessed and ensure that all documents related to students are retained for the appropriate amount of time as determined by federal law or state regulations.
4. Notifying Affected Parents/Guardians:
When releasing personally identifiable information about a student (or when a change in the student’s record is made), the school must notify the parents or guardians of such changes in writing.
5. Record Access and Correction:
Parents or guardians may access any records related to their child, as long as it does not violate other students' rights under FERPA. They also have the right to request corrections to inaccurate information contained in these records.
6. Written Consent for Release of Records:
Written consent must be given by a student's parent/guardian before any confidential information can be released outside of the educational institution unless an exception applies under FERPA law.
7. Student Privacy Rights:
Schools should provide all students with written notice of their rights regarding privacy and access to education records that are maintained by the school.
8. Third-Party Access:
Before providing any student records to a third party, such as a potential employer or college, obtain written consent from the parent/guardian or from the student if they are over 18 years of age. Ensure that all third-party agreements comply with FERPA requirements.