Federal Privacy Law

EDUCAUSE Library Items for Federal Privacy Law

Providing Private Cloud Services to Support HIPAA Compliance

April 17, 2013 | A session at the Enterprise IT Leadership Conference 2013

HIPAA and HIPAA HITECH legislation requires our institutions to protect Electronic Personal Health Information (EPHI). University departments in the health sciences clearly have teaching, researc…

IT Compliance Framework for Institutions of Higher Ed

April 16, 2013 | A session at the Security Professionals Conference

Institutions of higher education are increasingly expected to comply with various regulatory requirements specifically focused at data privacy and protection. Sometimes there could be overlap in ef…

Controlling Spam and Phishing at Princeton University: A Case Study

January 16, 2013 | A session at the Mid-Atlantic Regional Conference

This session will discuss how Princeton University tackled the seemingly insurmountable challenge of reducing spam and phishing in order to free up technology resources and focus on the school�…

Privacy and Security Initiatives of the U.S. Department of Education

November 7, 2012 | A session at the EDUCAUSE Annual Conference 2012

The U.S. Department of Education has launched several new privacy initiatives under the leadership of its first-ever chief privacy officer. Best known for enforcing the Family Education Rights an…

Obligation of Knowing: Ethics of Data Collection and Analytics

April 11, 2012 | A session at the ELI 2012 Online Spring Focus Session

The use of analytics in higher education is a relatively new area of practice and research. As with any new area of practice, a variety of issues will emerge as field progresses. For analytics, i…

Lightning Round: A New Model for Managing the Release of Personally Identifiable Information in a Federated World

March 13, 2012

Campuses use the Shibboleth system to authenticate their users to on- and off-campus services and assert attributes describing users. A Shibboleth extension allows sites to simplify the management …

On the Edges of Policy Questions, Student Privacy, and Student Learning

May 17, 2012 | A session at the Security Professionals Conference 2012

We all participate regularly in discussions of policy data, student learning data, and data privacy, yet it's difficult to bring the three domains together without conflict, as different prior…

Living, Learning, Cyberspace: A Program-Wide Blogging Initiative for Virginia Tech's Honors Residential College

February 15, 2012 | A session at the EDUCAUSE Learning Initiative 2012 Annual Meeting

How can the intimate, engaged experience of small-group learning be a template for a large research university? Virginia Tech's answer: a blogging platform that enables students and professors…

Leverage the Cloud + Leverage In-House + Improve Security = Save Money

January 11, 2012 | A session at the Mid-Atlantic Regional Conference 2012

The University of Maryland in Baltimore had to replace its in-house student e-mail system. Our students wanted Google. We had concerns with security as well as compliance requirements such as HIPAA…

Higher Education's Role in the Identity Ecosystem

October 19, 2011 | A session at the EDUCAUSE 2011 Annual Conference

The federal government has announced a National Strategy for Trusted Identities in Cyberspace (NSTIC), which seeks to better protect against fraud and identity theft, enhance individuals' priv…