Anna Merod reports:
Dive Brief:
- Minnesota public school districts, charter schools and colleges must now report cybersecurity incidents such as ransomware or network attacks under a newly enacted state law.
- The information that schools report to Minnesota will not be shared publicly, unlike with similar statewide data breach reporting requirements in California and Maine.
- Instead, the information will be anonymized and shared with “appropriate organizations” — with the goal of helping officials understand how security controls are bypassed and providing support for network protection.
Read more at K-12 Dive.
How about requiring school districts to notify employees and parents of students whose information has been accessed or acquired?