Data Security and Privacy
Data Security and Privacy
Data Security and Privacy Service
This is a new service supporting school districts implementation and ongoing compliance with Education Law 2-d and Part 121 of the Commissioner's Regulations.
To learn more about the service
Policies and Procedures
Parent's Bill of Rights Overview
Unauthorized Disclosure Complaint Procedure Overview
Incident Reporting & Notification Procedure Overview
BT BOCES Parents' Bill of Rights for Data Security and Privacy
Draft Policy from NYSED
Third Party Contract Flow Chart
Cyber Incident Response Recommended Protocol
Annual Employee Training Overview
Cyber Security & Privacy Reminders
Data Security Practices For Offsite Work
Data Privacy & Security Awareness Training - District Administrator Login Page
District Administrator Directions
Employee User Directions
Personally Identifiable Information (PII)
Protection of Personally Identifiable Information (PII)
PII - Requirements for NYS Educational Agencies
Third Party Contractors & District Requirements - Compliance Assessment
Third Party Contracts Overview
Third Party Contracts & District Requirements
Statewide Contracts 2020-2021 (NYSITCC & NYSDLCC)
Model Sample Data Privacy Rider
RIC One Data Privacy Inventory Tool (DPIT) Link
Inventory Tool Directions
Inventory Tool Potential Implementation Timeline
SCRIC DSP Service Inventory Tool Overview Presentation
Online Conferencing Solutions
NIST Cybersecurity Framework Overview
NIST Framework Core
NIST Framework - Requirements for NYS Educational Agencies
NIST Cybersecurity Framework
Information available to help support the districts with implementation include:
RIC One DPS COVID
Response: Data Protection and Continuity
Location, Location, Location - Where to Find Ed Law 2-d Resources
The RIC One Data Privacy and Security (DPS) initiative supports district compliance with New York State's Common Core Reform Act, Education Law 2-d and Part 121 Regulations.
As Districts continue to work remotely, the 12 Regional Information Centers have come together to create documents that address questions surrounding Ed Law 2-d and Part 121 of the Commissioner's Regulations during this time.
A presentation created by the SCRIC DSP Team to assist in finding resources located on the RIC One website.
List Serv Request Form
(Participating Districts O
Suggested Ed Law 2-d Implementation Timeline for Districts
Request up to three (3) administrators to be added to the subscription of our RIC One DPS listserv. You will receive Digital Digests, Digital Blasts and Digital Debriefs. Look to service description for more detail.
As districts begin to implement Education Law 2-d, this resource is intended to provide districts with a suggested implementation timeline.
BT BOCES - SCRIC CONTRACTS
RIC One is comprised of 12 Regional Information Centers in New York State. These RICs work together with the State Education department to develop and provide services to school districts. The RIC One Data Privacy and Security (DPS) initiative supports district compliance with New York State's Common Core Reform Act, Education Law 2-d and Part 121 Regulations. One of the items created to help assist districts was the Data Privacy Inventory Tool or DPIT.
The Data Privacy Inventory Tool compiles a list of district software as required by Education Law §2-d Part 121 Regulations. It provides a means for sharing our parents' bill of rights, supplemental information and compliance with components of the NIST Cybersecurity Framework.
Key Categories of the Data Privacy Inventory Tool
How the software product is procured; either BOCES, District, or District - Free
Document links or attachments to signed parent's bill or rights and supplemental information
To view our entire contracts page with supporting documentation, please click on the link below:
BT BOCES Contracts Supplemental Information Report
All hyperlinks that open a document will open in a new window. If you have trouble opening any document, please contact us. Additionally, any links that leave the South Central Regional Information Center website will open in a new window. We are not responsible for the content or design of any external website.
Data Security and Privacy
Prevent - Protect - Educate
SCRIC Data Security and Privacy Service Resources
This page houses general resources that are available to all.
For districts participating in the SCRIC DSP service, additional resources can be found by clicking the link below and entering the password shared with you.
SCHEDULED REGIONAL SESSIONS
View All Events
NIST CSF—Helping to Mitigate Your Risk by Identifying What You Have, Part IV Regional Sessions
Wed Oct 28 2020
NIST CSF—Helping to Mitigate Your Risk by Identifying What You Have, Part V Regional Sessions
Wed Nov 4 2020
NIST CSF—Helping to Mitigate Your Risk by Identifying What You Have, Part VI Regional Sessions
Wed Nov 18 2020
NIST CSF—Helping to Mitigate Your Risk by Identifying What You Have, Part VII Regional Sessions
Wed Dec 2 2020
NIST CSF—Helping to Mitigate Your Risk by Protecting What You Have, Part I Regional Sessions
Wed Dec 16 2020
See SCRIC Master Event Calendar
SCRIC Cyber Security and Data Privacy Forum Resources - January 30, 2020
View text-based website