Information Privacy & Security (IPS)

IPS covers the principles of data protection, focusing on basic information security, Family Educational Rights and Privacy Act (FERPA), and Children’s Online Privacy Protection Act (COPPA).

Organizations
LEARN MORE
New Subscribers Current Subscribers
Learners EXPLORE COURSES

About these Courses

IPS consists of three courses, Information Security, Family Educational Rights and Privacy Act (FERPA), and Children’s Online Privacy Protection Act (COPPA), which can be utilized based on organizational needs. The Information Security course provides information on basic techniques for data and device security, including email and mobile devices. The FERPA course provides a comprehensive overview of FERPA’s core aspects to ensure compliance with the regulations, as well as role-specific material for a variety of professionals working in education and research. The COPPA course prepares edtech developers and researchers to navigate COPPA’s legal requirements, conduct compliant research, and engage with digital environments used by children under 13.

These courses were authored and peer-reviewed by experts.

Organizational Subscription Price: Available as part of an organizational subscription package or for $675 per year/per site as a subscription add-on for government and non-profit organizations; $750 per year/per site as a subscription add-on for for-profit organizations.

Language Availability: English, Korean

Suggested Audiences: Administrators, Ed Tech Developers, Educators, Individuals Working with Identifiable Data, Instructors, IRB Administrators, IRB Members, Researchers, Students, Teachers

Basic Courses

Children’s Online Privacy Protection Act (COPPA)
New

This course prepares researchers and educational technology developers to navigate COPPA’s legal requirements, conduct compliant research, and engage with digital environments used by children under 13.

illustration of mom and child at secure computer
Information Security
CME/CEUUpdated

This course provides information on basic techniques for data and device security, including email and mobile devices.

hand unlocking smartphone with fingerprint security feature
Family Educational Rights and Privacy Act (FERPA)
CME/CEU

This course covers the core requirements of the federal Family Educational Rights and Privacy Act (FERPA).

Child student holding tablet in front of face

Included Webinars

Data Management and Security for Student Researchers: An Overview

Covers the best practices of data management and security for graduate student researchers.

3d cloud graphic with a security lock hanging from it
FERPA and Online Learning in the Time of COVID-19

This webinar covers student data privacy issues with online learning including compliance with FERPA and other regulations.

Information Privacy & Security (IPS)
Bring Your Own Device (BYOD) Studies

Discusses BYOD study best practices, implementation, and Institutional Review Board (IRB) review.

collection of different mobile devices
Partnering with Technology Companies

Provides an overall approach to and best practices for partnering with technology companies to design and conduct research.

two arrows coming together to merge into one arrow
Leveraging IT Insight in IRB Review

Discusses why technology-based expertise is critical to human subject protections and how to add IT insights to IRB review.

illustration of two people with torso-sized puzzle pieces

FAQs

What subject areas does IPS training cover?

The Information Privacy and Security courses address legal-regulatory requirements for data protection by subject area. The Information Security course discusses the protection of information in any context, regardless of the subject matter. FERPA-related content focuses on educational records. COPPA-related content focuses on personal information of children under the age of 13 collected online.

Note: For HIPAA-related requirements for health data, refer to the HIPAA series.

What privacy and security topics are addressed?

The Information Security course is organized to provide a basic foundation of data and device security techniques, supplemented by more detailed information relevant to the particular activities and context of the learner.

The FERPA course includes content on the basics of federal FERPA requirements, which also touches on state and local requirements. An introductory module is complemented by audience-specific modules.

The COPPA course includes content on the basics of federal COPPA requirements, such as the key requirements for operators of online services, the types of personal information protected under the law, the legal requirements for obtaining verifiable parental consent, the enforcement of COPPA, and COPPA’s impact on edtech and research involving minors in school settings.

What information security topics are addressed?

The Information Security track is organized to provide a basic foundation of data and device security techniques, supplemented by more detailed information relevant to the particular activities and context of the learner. Learn more.

What is the recommended course setup?

For an Information Security course, we recommend that the two “Basics” modules be required as a foundation. A subset of the remaining modules could be used as electives, or as purely supplemental (optional) modules.

For a FERPA course, we recommend that the “FERPA: An Introduction” module be required as a foundation, along with at least one of the role-specific modules, depending on the type of learner.

For a COPPA course, we recommend that all modules be required and presented in sequence.

What is the recommended training frequency?

There is not specific guidance on the frequency of information security, FERPA, or COPPA training. It is up to each organization to determine when a “refresher” is appropriate. Sometimes state laws or organizational policies may provide a standard. Absent other considerations, we recommend retraining of some kind at least every three to four years.

What changes are in place for the IPS series?

Effective April 1, 2023, the Health Privacy (HIPAA) modules that were included in the Information Privacy and Security (IPS) series are no longer part of the IPS series.

A new HIPAA series includes the Health Privacy (HIPAA) modules as well as a new HIPAA Basics for Healthcare Professionals course. Organizations that have Health Privacy (HIPAA) modules in their gradebooks will have the new HIPAA series added to their renewal invoices (for an additional fee).