Educause Guidance for Higher Ed Leaders: Basics of Data Privacy Oversight, Transparency, and Compliance

A new Showcase Series from Educause, titled “Privacy and Cybersecurity 101,” offers guidance for higher education leaders on pressing issues of the day: data privacy, information security, and institutional transparency around both.

Everyone is talking about data privacy and security, Educause’s post says, but “how many of us in higher education understand the role we play in data use and protection, realize how we can help students gain clarity about what these issues mean for them, and are aware of what lies ahead for compliance requirements?”

The first key step, dubbed “The Intention-Protection Connection,” is a clear explanation from leaders of higher education institutions that lays out what kind of data will be collected, how it will be used, and how it will be protected, Educause said.

The Educause post features a video Q&A with Ben Archer, privacy manager at Arizona State University, which starts with Archer explaining why data privacy literacy is a foundational requirement for higher education leaders.

The brief video explains such things as why education leaders not only need to practice data privacy literacy but also should be capitalizing on the “opportunity to show students how their data should be handled.”

The Educause post then delves into the importance of transparency by higher education institutions around data collection, data use, and data privacy — basing its guidance on results of a broad survey conducted last year, “Student Data Privacy and Security: A Call for Transparent Practices."

The resulting report from that survey explains why students feel like they cannot trust their institution without transparency about the institution's data privacy and information security practices, and it further explains how data privacy and infosec are equity issues.

Finally, Educause advises IT practitioners and leaders at higher education institutions to continue working toward full compliance with federal infosec guidelines using the NIST SP 800-171 Toolkit. “Campus leaders need to understand the requirements, the ways those requirements might run counter to the higher education values of openness and collaboration, and how to demonstrate institutional compliance,” Educause said.

Learn more and access the guidance materials at the Educause website.

About the Author

Kristal Kuykendall is editor, 1105 Media Education Group. She can be reached at [email protected].


Featured

  • row of students using computers in a library

    A Return to Openness: Apereo Examines Sustainability in Open Source

    Surprisingly, on many of our campuses, even the IT leadership responsible for the lion's share of technology deployments doesn't realize the extent to which the institution is dependent on open source. And that lack of awareness can be a threat to campuses.

  • server racks, a human head with a microchip, data pipes, cloud storage, and analytical symbols

    OpenAI, Oracle Expand AI Infrastructure Partnership

    OpenAI and Oracle have announced they will develop an additional 4.5 gigawatts of data center capacity, expanding their artificial intelligence infrastructure partnership as part of the Stargate Project, a joint venture among OpenAI, Oracle, and Japan's SoftBank Group that aims to deploy 10 gigawatts of computing capacity over four years.

  • colorful panels depicting university housing, meal plans, data analytics, forms, and a student

    New Thesis Elements Student Life Module Integrates Housing, Meal Plans, and Student Services

    Student information system provide Thesis Elements recently launched a new Student Life module that enables institutions to manage student housing assignments, meal plans, billing, and other student services from within the Elements SIS platform.

  • laptop displaying a glowing digital brain and data charts sits on a metal shelf in a well-lit server room with organized network cables and active servers

    Cisco Introduces AI-First Approach to IT Operations

    At its recent Cisco Live 2025 event, Cisco announced AgenticOps, a transformative approach to IT operations that integrates advanced AI capabilities to enhance efficiency and collaboration across network, security, and application domains.