Is it Fair to Inform Data Breach Victims via Social Media?

Is it Fair to Inform Data Breach Victims via Social Media?

Every breach of children’s privacy is severe and has the potential to cause lasting harms. Since the watershed year 2016 when many Canadian boards of education were financially incentivised to make the irreversible leap from on-premise information systems to cloud edtech ‘learning management systems’, a massive brain drain simultaneously took place within their IT and…

While Negligible, Amazon’s Privacy Fine Serves as a Timely Warning to Data Brokers

While Negligible, Amazon’s Privacy Fine Serves as a Timely Warning to Data Brokers

According to the Federal Trade Commission, “Amazon’s history of misleading parents, keeping children’s recordings indefinitely, and flouting parents’ deletion requests violated COPPA and sacrificed privacy for profits”. So how did “the everything store” get away with a “disregard for #privacy and security that exposed consumers to #spying and harassment” by paying a relatively small $30 million fine while continuing to…

Privacy Regulators Set The Right Example for How To Deal With Negligent Edtech

Privacy Regulators Set The Right Example for How To Deal With Negligent Edtech

Ouch! According to the Federal Trade Commission, Microsoft violated consent and data retention requirements of the U.S. #COPPA #privacy legislation by requiring children under 13 to provide their first and last names, email addresses, dates of birth, and phone numbers. The #confidential data was shared *by default* with advertisers and third-party developers. The information and underage children’s unique persistent identifiers were…

Think Your Company Does a Good Job of Collecting Children’s Data? Regulators Might Disagree

Think Your Company Does a Good Job of Collecting Children’s Data? Regulators Might Disagree

Big, positive news for public education and parents: “This order makes clear that ed tech providers cannot outsource compliance responsibilities to schools, or force students to choose between their #privacy and #education“. Kudos to the Federal Trade Commission for standing up for chidren’s right to privacy and offering much-needed guidance to the poorly regulated #edtech sector. Lots of useful takeaways here for…

Parents and teachers should collaborate to recognize, prevent and stop Edtech violations of children’s privacy

Parents and teachers should collaborate to recognize, prevent and stop Edtech violations of children’s privacy

How can public education institutions prevent the loss of children’s data?Avoid collecting it in the first place and require #edtech vendors to purge it annually from their entire supply chain. It sounds sensible, but it’s easier said than done in our post-pandemic world. Since 2016, school boards have been under continuous pressure to adopt cloud applications to…

3 Immutable Conditions for Trustworthy #Edtech

3 Immutable Conditions for Trustworthy #Edtech

Because Edtech Without Integrity is Fraud After two decades in information security, I was a latecomer to the edtech party back in 2016 and what I found was a land rush for the last frontier of intangible assets: children’s personal data. To be clear, 2016 was a watershed year in edtech cybersecurity breaches. With tens…

The Ugly Side of Remote Learning

Pandemic Excuses Enable School Boards and Edtech Companies to Force Parental Consent for Student Data Collection With the vastly expanded use of remote learning during the Covid-19 pandemic, some school boards are taking the extraordinary step of forcing parents and students to agree to risky data collection practices and privacy-invasive technologies. Months after the start…