Washington, DC, 29 July, 2020 —The Student Data Privacy Consortium (SDPC), a special interest group of the non-profit Access 4 Learning (A4L) Community, is proud to announce the release of the first National Data Privacy Agreement (NDPA) to streamline application contracting and set common expectations between schools/districts and marketplace providers.
“The achievement of the first NDPA marks a huge milestone for the Consortium” states Steve Smith, CIO, Cambridge Public Schools. “From it’s origins the SDPC’s goal has been to build common expectations between LEAs, SEAs, Parents, Students and Marketplace Providers around student data privacy agreements.This first NDPA is the result of six years of community work of building bridges and facilitating collaboration between all in the JK-12 edtech world. Although this feels like a final product, I’m optimistic that this is actually the beginning of a new phase of privacy awareness and best practice adoption across the marketplace.”
Currently, the freely accessible SDPC Resource Registry hosts over 15,000 signed Data Privacy Agreements (DPAs) between more than 8,000 schools/districts and 4,500 education application providers. These DPAs have been developed by the 28 state Alliances addressing their specific state needs. The Alliance leaders determined in 2019 that there was enough commonality between their DPAs that a national DPA Project Team be formed and explore the viability of developing a draft that could be used by any school/district across the US. Two years later, the Community is proud to release the first version of the NDPA.
The NDPA has been developed with extensive review and comments from schools, districts, state organizations, marketplace providers and their legal representatives. It is designed to address common student data privacy concerns and streamline the educational application contracting processes for schools/districts who do not have the legal or fiscal resources and vendors who previously had to sign “one off” contracts with each of the over 13,000 US school districts. While the NDPA allows for any state specific legislative requirements, the majority of the privacy expectations are standardized and can be used by any entity as part of their Terms of Service Agreements.
To access the work of the SDPC, including this marketplace impacting project, visit https://privacy.A4L.org/national-dpa/