Student Online Personal Protection Act (SOPPA)
What happens to the student data that we send to a third party vendor? Information like names, birthdates, etc... may be provided by Summit to a third party like Embrace, NWEA MAP, etc... What protections do those companies have in place to make sure that our student's data is not sold or freely given to others? This is exactly what SOPPA looks to address.
As part of SOPPA, these companies must enter into Data Privacy Agreements (DPA) with each district they work with. These agreements outline what data is stored, how it is protected, what the company can and cannot do with that data, and what they will do in the event of a data breach.