Classroom PIA Model and Privacy Compliance
Under B.C.'s Freedom of Information and Protection of Privacy Act (FIPPA), school districts are required to conduct a privacy impact assessment (PIA) of digital tools that are being considered for use. The reality is, that for teaching and learning, there is a continuous stream of new digital tools on offer.
The Classroom Privacy Impact Assessment (PIA) Model provides a realistic pathway for districts to support teachers in selecting digital resources, and conducting Privacy Impact Assessments, while meeting district responsibility requirements under FIPPA.
The model requires districts to have a number of supports in place in order to meet privacy compliance requirements.
Members - login to access planning resources.
Understanding the Requirements
Focused Education worked with Coquitlam School District to analyze their technical solution which included MS forms, Sharepoint lists, and Power Automate workflow. The analysis showed they had assets in place which supported the development of this technical solution. The technical solution was the end point...not the starting point.
Their foundational work included the development of policies and procedures; risk analysis; creation of review criteria; and the establishment of roles with assigned responsibilities. Without these building blocks in place, the technical solution ( the 'form'), will not meet privacy compliance requirements.
To guide districts in their own work, Focused ED has developed templates, and provided examples to support planning, based on Coquitlam's approach.
Planning Framework
The framework shows each of the major planning areas that underpin the development of the model.
1
Overview of the Model
Understand the actions that occur at the classroom, and district levels. Access an explanation and diagram of the form submission and review progression.
2
Assess Readiness
Assess your district's readiness to implement the model.
3
Policy and Procedures
Review key legislation to develop your local policy and procedures.
4
Identify Assets and Gaps
Access a planning guide to identify organizational assets and gaps.
5
Risk Analysis
Develop your definitions and guidelines for consideration of sensitivity and risk factors.
6
Access MS Form Examples
Review an analysis of the questions that are contained in each form. Customize to meet your requirements.
7
Technical Solution
With decisions made and structures in place, move to implementing the technical solution.
Privacy Management Program Manual
We have gathered all the resources in one place to help guide those responsible for creating a Privacy Management Program. Our PMP manual is available to download or for those wishing to peruse the seven components and resources online, we also have them available individually via the links above.
Freedom of Information & Protection of Privacy Act Overview
Learn about the legal privacy obligations that apply to school districts.
The Freedom of Information and Protection of Privacy Act (FIPPA) is a legal framework that guides access to public sector information and safeguards personal privacy. It grants individuals the right to obtain records from government bodies, enhancing transparency, while also enforcing strict rules on how these bodies handle personal data, only allowing collection, use, and sharing under specific, lawful circumstances. FIPPA's core is to promote open governance while respecting privacy rights, detailing when information should be released or withheld.