Educause Guidance for Higher Ed Leaders: Basics of Data Privacy Oversight, Transparency, and Compliance

A new Showcase Series from Educause, titled “Privacy and Cybersecurity 101,” offers guidance for higher education leaders on pressing issues of the day: data privacy, information security, and institutional transparency around both.

Everyone is talking about data privacy and security, Educause’s post says, but “how many of us in higher education understand the role we play in data use and protection, realize how we can help students gain clarity about what these issues mean for them, and are aware of what lies ahead for compliance requirements?”

The first key step, dubbed “The Intention-Protection Connection,” is a clear explanation from leaders of higher education institutions that lays out what kind of data will be collected, how it will be used, and how it will be protected, Educause said.

The Educause post features a video Q&A with Ben Archer, privacy manager at Arizona State University, which starts with Archer explaining why data privacy literacy is a foundational requirement for higher education leaders.

The brief video explains such things as why education leaders not only need to practice data privacy literacy but also should be capitalizing on the “opportunity to show students how their data should be handled.”

The Educause post then delves into the importance of transparency by higher education institutions around data collection, data use, and data privacy — basing its guidance on results of a broad survey conducted last year, “Student Data Privacy and Security: A Call for Transparent Practices."

The resulting report from that survey explains why students feel like they cannot trust their institution without transparency about the institution's data privacy and information security practices, and it further explains how data privacy and infosec are equity issues.

Finally, Educause advises IT practitioners and leaders at higher education institutions to continue working toward full compliance with federal infosec guidelines using the NIST SP 800-171 Toolkit. “Campus leaders need to understand the requirements, the ways those requirements might run counter to the higher education values of openness and collaboration, and how to demonstrate institutional compliance,” Educause said.

Learn more and access the guidance materials at the Educause website.

About the Author

Kristal Kuykendall is editor, 1105 Media Education Group. She can be reached at [email protected].


Featured

  • woman

    AI Giants Back Nonprofit Focused on Workforce Transition

    The AI industry's biggest names are investing in more than just models and infrastructure — they're focusing on workforce readiness. OpenAI, Anthropic, Microsoft and Amazon are backing Raise US, a new nonprofit that aims to raise $1 billion to help American workers prepare for an AI-driven economy.

  • abstract network technology

    Rowan University Partners with HPE on New Learning Initiative

    New Jersey's Rowan University has expanded its partnership with enterprise technology provider HPE to improve research capabilities and hands-on learning opportunities.

  • abstract cybersecurity data protection

    Rubrik Intros Google Workspace Data Protection

    Rubrik has announced the launch of Rubrik Data Protection for Google Workspace, a product the company said is designed to help enterprise customers protect data and restore operations across Google Workspace environments.

  • AI logo near computer equipment

    White House Releases National Policy Framework for AI

    The White House has released a four-page AI policy framework aimed at setting a national approach to AI, with priorities including child safety, intellectual property protections, truth and accuracy guardrails, and worker training for an AI-driven economy.