Kate Masters reports:
After a major student data breach, Frederick County Public Schools now has a clear response policy for future security lapses.
The policy — which the Board of Education passed unanimously Wednesday — provides a multi-step plan for school administrators if FCPS data is stolen or leaked.
[…]
The plan sets clear expectations for notification in the event of a breach. The policy calls for victims to be notified within 30 to 45 days after the security lapse is verified, and for the notification to include details on what personal information was stolen.
Delayed notification was a concern after the most recent data breach, which became a monthslong crisis for the school system. Though the district was notified of the leak in September, it took FCPS officials more than three months to notify the students affected.
Read more on The Frederick News-Post.