​​​​​​Data Privacy &

PROTECTION TASK FORCE

was founded at the

Fall 2018 Data Summit

by PESC Members.

Data Privacy &

PROTECTION TASK FORCE

​is an open forum in which

data and data-related topics

affected by privacy & protection laws

are discussed; and activities including

development & maintenance of external file

formats & PESC APPROVED STANDARDS

are recommended to PESC for adoption.

CO-CHAIRS

Julia Funaki

Associate Director

AACRAO

Doug Falk

CIO & VP

National Student Clearinghouse

TASK FORCE PARTICIPANTS

Jason Andries

Coordinator of Network Operations

Campus Manitoba

Michael Bailey

Emory University

Kristi Blabaum

Systems Integration Analyst

Ascendium Education

Robb Blacquiere

OCAS

Sarah Bosworth

New England Institute of Technology

Mary Chapin

Chief Legal Officer, VP & Corporate Secretary

National Student Clearinghouse

Clint Chapman

NRCCUA

Nathan Cicchillo

Director of Admissions & Evaluation

University of Phoenix

Jeff Elliott

University of Missouri System

Jill Gebke

St. Louis College of Pharmacy

​​

Rita Hazlett

National Student Clearinghouse

Craig Karlin

University Registrar

Fort Hays State University

James Kelly

Senior Director of Technology

ECE

Holly Lazzaro

Executive Director

Gotocollegefairs.com

Mark McConahay

Associate Vice Provost and Registrar​

​Indiana University

VP of Information Technology

AACRAO

​​

Susan McCrackin

Senior Director of Financial Aid Methodology

College Board

David Moldoff

Founder & CEO

AcademyOne

Nick Nicholas

NSIP

Amanda Nott

Jenzabar

​Jennifer Paradise-McCurdy

Director of Business Services

OUAC

Megan Perkins

Northeastern University

Raquel Presley

University of Phoenix

Simone Ravaioli

Director of Strategic Partnerships

Digitary

​Amanda Janice Roberson

IHEP

Ken Sauer, Ph.D.

Associate Commissioner & Chief Academic Officer

​Indiana Commission for Higher Education

Margit Schatzman

President

ECE

Lori Sebranek

Madison College

Laura Sippel

AICE

Rick Skeel

Director of Product Management

Ellucian

​Siva Surapaneni

Senior Product Manager

​Workday

Anthony Yaremenko

NSIP

​MEETING SCHEDULE

Weekly/Monthly -

LISTS

Privacy@lists.pesc.org

​

​

​

UNDER CONSTRUCTION

​What is the Data Privacy & Protection Task Force?

How did the Task Force start?

​Who is involved with the Task Force?

What are the benefits of the Task Force?

​How is the Task Force governed?

What is the current status of the Task Force?

What does it cost to join the Task Force?

How do I get involved with the Task Force?

​

​

​

​

​

​

​READING & RESOURCES

California Consumer Privacy Act (CCPA)

and​

CCPA Fact Sheet

California Department of Justice

Protecting Student Privacy While Using

Online Educational Services

US NCES PTAC

U.S. Data Care Act of 2018

115th US Congress

Improving the Effectiveness and

Efficiency of FERPA Enforcement

US OMB - December 20, 2018

AACRAO Privacy Guidance

General Data Protection Regulation

(GDPR)

European Union

Student Data Privacy Forum (PK12)

A4L Community

Family Policy Compliance Office

US Department of Education

FROM THE FALL 2018 DATA SUMMIT

As the European Union’s General Data Protection Regulation (GDPR) has been in effect for 6 months now, several critical issues remain unknown about how postsecondary institutions (registrars and admissions officers) and Student Information Systems (SIS) vendors are implementing GDPR.

What rules are colleges and universities applying to student records to determine if a record is subject to GDPR?

Are there standards for the set of data elements required to correctly store GDPR indicators on the student record?

Have SIS vendors already updated their systems to include GDPR attributes on the student record? If so, how did they determine the necessary fields and rules for storing GDPR flags and/or indicators?

For the ‘right to be forgotten,’ what is the extent of responsibility for one organization informing another regarding data to be ‘forgotten?’

Have the legal departments of the SIS vendors interpreted GDPR differently, and if so, how might that impact how data is stored and exchanged?

Might PESC need to coordinate standardizing transmission of GDPR indicators in EDI/XML and other file formats.

This Task Force will discuss these topics and other questions related to the legal, technical implementation of GDPR, FERPA and additional privacy & protection rules and regulations for institutions, service providers, third parties and student information systems.

​

​

ANNOUNCEMENTS, NEWS & EVENTS

​>> PRESENTATION <<

ACCESS 4 LEARNING
STUDENT DATA PRIVACY CONSORTIUM

>> PRESENTATION<<

AACRAO 105th ANNUAL MEETING

APRIL 2, 2019

>> AACRAO GDPR GUIDE <<

Implications of GDPR

Inter-Association Guide

​NEXT TASK FORCE MEETING

Friday March 20 2020

10am P / 11am M / 12pm C / 1pm E