Compliance overview
CoGuide is designed to comply with all applicable educational privacy laws and regulations. Our comprehensive compliance framework ensures that your school meets all legal requirements while using CoGuide to enhance classroom engagement.Legal compliance: CoGuide helps your school maintain compliance with FERPA, COPPA, and state privacy laws while providing valuable classroom insights.
FERPA compliance
Family Educational Rights and Privacy Act
CoGuide fully complies with FERPA requirements for protecting student educational records and privacy.No PII collection
Privacy protection
- No personally identifiable information collected
- Anonymous participation tracking only
- Data cannot be linked to individual students
- School controls all data access
Educational purpose
Educational use only
- Data used only for educational purposes
- No commercial use of student data
- No sharing with third parties
- School maintains data ownership
FERPA requirements met
1
No educational records
CoGuide does not create or maintain educational records as defined by FERPA.
2
No PII disclosure
No personally identifiable information is disclosed to unauthorized parties.
3
School control
Schools maintain complete control over all data collection and use.
4
Parental rights
Parents retain all rights under FERPA regarding their children’s data.
FERPA compliance features
Data minimization
Data minimization
- Essential data only: Collect only data necessary for classroom insights
- Anonymous tracking: No collection of personally identifiable information
- Purpose limitation: Data used only for stated educational purposes
- Retention limits: Data kept only as long as necessary
Access controls
Access controls
- School ownership: Schools own and control all data
- Authorized access: Only authorized school personnel can access data
- No third-party sharing: Data not shared with external parties
- Audit trails: Complete logs of all data access
Parental rights
Parental rights
- No PII collection: Parents cannot access data that doesn’t exist
- School policies: Schools determine data access policies
- Transparency: Clear communication about data practices
- Consent: Schools obtain necessary consent for data collection
COPPA compliance
Children’s Online Privacy Protection Act
CoGuide complies with COPPA requirements for protecting children’s online privacy.1
No personal information
CoGuide does not collect personal information from children under 13.
2
School-controlled
All data collection is controlled by schools, not by CoGuide directly.
3
Educational purpose
Data collection serves legitimate educational purposes only.
4
Parental consent
Schools obtain necessary parental consent for data collection.
COPPA compliance features
No direct collection
School-controlled data
- No direct data collection from children
- Schools control all data collection
- No commercial use of children’s data
- Educational purpose only
Privacy protection
Child privacy
- No personal information collected
- Anonymous data only
- No behavioral advertising
- No data sharing with third parties
State privacy laws
California Student Privacy Rights Act (CalSPRA)
Compliance with California’s comprehensive student privacy protection law:Data protection
Data protection
- Strong privacy protections: Enhanced privacy protections for student data
- No commercial use: Prohibition on commercial use of student data
- Data minimization: Collection of only necessary data
- Parental rights: Strong parental rights regarding student data
School control
School control
- School ownership: Schools own and control all student data
- No third-party sharing: Prohibition on sharing with third parties
- Educational purpose: Data used only for educational purposes
- Transparency: Clear communication about data practices
New York Education Law Section 2-d
Compliance with New York’s student privacy protection requirements:1
Data security
Implement strong data security measures to protect student information.
2
Privacy protection
Ensure student privacy is protected throughout data lifecycle.
3
Parental rights
Respect parental rights regarding student data access and control.
4
School policies
Comply with school data privacy and security policies.
Illinois Student Online Personal Protection Act (SOPPA)
Compliance with Illinois’ student privacy protection law:Data transparency
Open practices
- Clear data collection practices
- Transparent data use policies
- Regular privacy policy updates
- Public data use disclosure
Parental control
Parental rights
- Parental access to student data
- Parental consent for data collection
- Parental deletion rights
- Parental notification of data breaches
Other state laws
Compliance with additional state privacy laws:Connecticut Student Data Privacy Act
Connecticut Student Data Privacy Act
- Compliance with Connecticut’s student data privacy requirements
- Strong data protection measures
- Parental rights protection
- School data control
Oregon Student Information Protection Act
Oregon Student Information Protection Act
- Adherence to Oregon’s student information protection requirements
- Data security standards
- Privacy protection measures
- Compliance monitoring
Other states
Other states
- Compliance with other applicable state privacy laws
- Regular updates for new state requirements
- Comprehensive privacy protection
- Legal compliance monitoring
International compliance
GDPR compliance
Compliance with the General Data Protection Regulation for international schools:1
Data protection principles
Adhere to GDPR data protection principles including lawfulness, fairness, and transparency.
2
Individual rights
Respect individual rights including access, rectification, and erasure.
3
Data minimization
Collect only data that is necessary for the stated purpose.
4
Consent management
Implement proper consent management for data collection and processing.
Other international laws
PIPEDA (Canada)
PIPEDA (Canada)
- Compliance with Canada’s Personal Information Protection and Electronic Documents Act
- Privacy protection for Canadian students
- Data security requirements
- Consent and access rights
Privacy Act (Australia)
Privacy Act (Australia)
- Adherence to Australia’s Privacy Act requirements
- Student privacy protection
- Data handling standards
- Compliance monitoring
Compliance monitoring
Regular compliance audits
1
Internal audits
Conduct regular internal compliance audits to ensure ongoing adherence to regulations.
2
External audits
Engage third-party auditors to verify compliance with applicable laws.
3
Legal review
Regular legal review of privacy policies and practices.
4
Policy updates
Update policies and procedures based on audit findings and regulatory changes.
Compliance reporting
Regular reports
Ongoing monitoring
- Monthly compliance reports
- Quarterly risk assessments
- Annual compliance reviews
- Regulatory change monitoring
Incident reporting
Issue management
- Immediate incident reporting
- Root cause analysis
- Corrective action plans
- Prevention measures
Compliance tools
Privacy management
Consent management
Consent management
- Consent tracking: Monitor and manage user consent for data collection
- Consent withdrawal: Easy process for users to withdraw consent
- Consent renewal: Regular renewal of consent as appropriate
- Consent documentation: Complete records of all consent activities
Data mapping
Data mapping
- Data inventory: Complete inventory of all data collected
- Data flow mapping: Track data flow through all systems
- Purpose mapping: Document purpose for each data element
- Retention mapping: Track data retention periods and requirements
Compliance monitoring
1
Automated monitoring
Use automated tools to monitor compliance with privacy policies and procedures.
2
Alert systems
Implement alert systems to notify of potential compliance issues.
3
Regular reviews
Conduct regular reviews of compliance status and requirements.
4
Training programs
Provide ongoing training on compliance requirements and best practices.
School compliance support
Implementation assistance
Policy development
School policies
- Help develop school privacy policies
- Ensure policy compliance
- Regular policy updates
- Legal review support
Training programs
Staff training
- Privacy training for teachers
- Compliance training for administrators
- Regular training updates
- Certification programs
Ongoing support
Compliance consulting
Compliance consulting
- Regular consultations: Ongoing compliance consulting and support
- Regulatory updates: Regular updates on regulatory changes
- Best practices: Sharing of compliance best practices
- Issue resolution: Help resolving compliance issues
Documentation support
Documentation support
- Policy templates: Templates for privacy policies and procedures
- Compliance checklists: Checklists for ensuring compliance
- Documentation guides: Guides for maintaining compliance documentation
- Audit support: Support for compliance audits and assessments
Compliance resources
Documentation
Privacy policies
Comprehensive privacy policies and procedures documentation.
Compliance guides
Detailed guides for maintaining compliance with various regulations.
Legal resources
Legal resources and references for compliance requirements.
Training materials
Training materials and resources for compliance education.
Support services
1
Compliance hotline
Dedicated hotline for compliance questions and issues.
2
Legal support
Access to legal support for complex compliance issues.
3
Regular updates
Regular updates on regulatory changes and compliance requirements.
4
Emergency support
Emergency support for urgent compliance issues.