Online Resource Vetting & Approval Process
District 96 has implemented an Online Resource Vetting and Approval Process for all online resources being utilized by staff and students.
Contracted Online Services Providers
District 96 has established a set of criteria that must be met prior to entering into a service agreement with an online service provider in which there is an exchange of personally identifiable information (PII).
- Privacy Quality Assessment: Each service provider being considered for use must pass a third-party privacy quality assessment. The assessment is conducted via the use of Education Framework's EdPrivacy Services. Education Framework conducts a data privacy and security analysis on every application and website we request and provides the district with a score based on a five-star system to indicate how safe our student data would be within the platform. The analysis also informs us of what personal information is being collected, how it’s retained, if that information will be used for commercial purposes, and if parents have the ability to review or delete the student data that’s collected. We then determine based on the recommendations if the software can be used in your classrooms, if direct parental consent is required, or if we should opt not to utilize the software.
- Contract Addendum / Data Sharing Agreement: Once the online service provider has passed the Privacy Quality Assessment they must agree to Data Sharing Agreement (DSA). The DSA is a contract addendum that was developed by the district's legal counsel and is aligned ensure that all Federal and State laws regarding the protection and privacy of our data are being followed.
- Annual Deletion of Non-Longitudinal Data: Each online service provider must also agree to delete all data by request of the district. This request will be made of all online service providers with the exception of services which retain data for the purpose of longitudinal reporting.
Non-Contracted Online Services Providers
District 96 has also established a set of criteria that must be met prior to allowing staff to utilize an online service provider in which there is an exchange of personally identifiable information (PII).
- Request to Utilize New Services: Staff members are instructed to submit requests identifying the online service provider they are seeking to utilize with students. The requests are jointly evaluated by both the Director of Technology & Innovation and the Asst. Superintendent of Curriculum and Instruction. If approved, the resource is then submitted to Education Framework for a Privacy Quality Assessment.
- Privacy Quality Assessment: See above.
- Parental Permission: Teachers must obtain Verifiable Parental Consent prior to students utilizing a resource once it has passed the Privacy Quality Assessment.
- Annual Deletion of Data: Each online service provider must also agree to delete all data by request of the district. This request will be made of all non-contractual online service providers.
Online Resource Vetting and Approval Process Flowchart