King’s College London fell afoul of the Data Protection Act, it seems. The Information Commissioner’s Office (ICO) learned that a spreadsheet containing personal data -including exam results – of 1831 students and applicants was sent in error to 22 students. Of note, the spreadsheet had been worked on by and transferred between several employees prior to being sent out…
Category: Education Sector
Ca: Case of accused CBE teen hacker adjourned until August
Daryl Slade has an update on the case of the teenager accused of hacking the Calgary Board of Education: The lawyer for a 15-year-old boy charged last month with allegedly hacking into Calgary Board of Education servers over a five-month period appeared in youth court on Thursday. The teen, who was represented by lawyer Joel Chevrefils, allegedly…
Massachusetts DESE finds Tewksbury data breach violated state law
In April, this site noted what I described as a “horrific” breach involving the Tewksbury public schools. A document included in a 222-page School Committee packet that had been publicly available online not only exposed personal and private details for the out of district placements of 83 special education students, but it rated their parents according…
NYS Comptroller Audit of Onteora Central School District: Information Technology
From the well-there’s-certainly-room-for-improvement dept.: Scope and Objective The objective of our audit was to determine whether the District’s IT assets were adequately safeguarded for the period July 1, 2013 through November 5, 2014. We extended our review of data extracted from the District’s computers and networks through the end of our fieldwork March 3, 2015….
Ca: Student loan data breach class action lawsuit can expand, Federal Court rules
The Canadian Press reports: The Federal Court of Appeal has ordered the expansion of a class action lawsuit brought by thousands of students whose personal loan data was lost by the federal government. And the lawyer representing the students says that decision could have far-reaching implications for other similar cases. Read more on CBC News….
New Hampshire Enacts Breach Notification Requirement for the Department of Education
Scott Koller explains: The state of New Hampshire recently enacted House Bill 322 (“HB 322”), which requires the Department of Education (“DOE”) to implement additional procedures to protect student and teacher data from security breaches. Those procedures now include a breach notification requirement. Effective August 11, 2015, the DOE must develop a detailed security plan…