Supporting Data Privacy and Security
Data Privacy and Security Services Reentry Response
The RIC One Data Privacy and Security Service is a statewide initiative. All twelve RICs are working together to provide districts with resources in support of Ed Law 2d Part 121 Regulations. As you plan for an unprecedented school year, the LHRIC is here to support your needs. We will continue to keep you up to date with information regarding NYSED deadlines and help your newly appointed Data Protection Officer fulfill the districts requirements.
As your plan your reentry, keep in mind the need to protect not only the health of your students and staff but their data as well. Be wary of "free" software offers. Be sure to utilize Ed Law 2-d compliant tools for remote learning and video conferencing. Not sure if software is compliant with Ed Law 2-d? Check the list of LHRIC supported Ed Law 2-d compliant titles.
Any questions... feel free to reach out to Dr. Madalyn Romano at firstname.lastname@example.org. I will be monitoring email and will respond as quickly as possible to any questions or concerns.
Data Protection Officer Resources
The supplemental information for LHRIC/SWBOCES contracted software is available using the link above. A variety of contracting consortiums and buying channels are used to ensure Ed Law 2-d Part 121 Regulation compliance. If you have any questions about the laws and regulation contact Dr. Madalyn Romano (email@example.com). For questions regarding software through Student / Financial Services, contact Jay Dave (firstname.lastname@example.org). For Instructional Software contracts, contact Sarah Martabano (email@example.com)
What to do in the first 48 hours of a Cyber attack can make a big difference in the impact of the attack. The link below will provide districts with contact information and steps to follow in the event of a Cyber attack on your systems.
Additional Resources - Dealing with COVID-19
In the wake of the COVID-19 crisis, school districts have leveraged online conferencing platforms to stay connected. Officials are raising concerns about security due to several reports of uninvited visitors crashing meetings. While educators continue the transition to digital learning, this site is a live document designed to assist school districts with best practices for providing secure online conferencing.
DPO Mentoring Service
Working side by side with district data privacy teams, the LHRIC will provide mentoring and guidance to help districts develop internal capacity to meet the requirements of Ed Law 2-d and the Regulations.
Participation in RIC One DPSS is required.
DPO Support Service
The goal is to provide assistance with the requirements of Ed Law 2-d and the Regulations based on district needs. A school district administrator retains the official title and authority of the DPO with the LHRIC performing routine functions and support.
Participation in RIC One DPSS is required. Availability is limited.
RIC One API
RIC One API and Data Privacy
RIC One API was developed in response to Ed Law 2-d and NYSED's reliance on the Regional Information Centers to create an integration service. RIC One API is a public organization which uses a private cloud for integrations. For questions related RIC One API integrations, please use Service Now for submission of issues. The RIC One API team and Student Services work together to resolve issues related to RIC One API Integrations.
Please use this link to submit a request: https://lhric.service-now.com/ess/main.do
RIC One DPSS
The RIC One DPSS Website has been modified to include resources and tools to help districts begin their work on the requirements for compliance with Part 121 Regulations of Ed Law 2-d. Use this link to access the RIC One DPSS and resources.RIC One DPSS
Maintaining the security and privacy of student data is what sets RIC One apart from all other similar services. Districts retain control of their data while in the custody of their RIC.
Digital Digest & Blasts
D3—Digital Digest Debrief – Deep dive webinar on a featured topic from the Digital Digest.
Periodic webinars and interviews with industry leaders on topics related to data privacy and security.
Software Inventory Tool
This tool enables districts to compile a list of their software inventory as well as links to third-party vendor’s software Privacy Policies and Notices thus enabling districts to comply with provisions of the New York State’s Parents’ Bill of Rights. Over 800 products are currently included in the database, and districts may submit requests for additional products.
Districts still retain responsibility to review vendor contracts.
Web-based data privacy and security awareness training that follows a structured outline, including a formal assessment and printable certificate of completion.
Additional materials for instructor-led professional development are also available.