Complying with FERPA, COPPA, and other student privacy laws can be complex. But when privacy policies are poorly written or not adequately protective of consumer rights, criticism is sure to follow eventually. A listing of laws and compliance guides are available throughout this site. For small app developers or those looking for some quick key points, we provide the below items for a quick check-up. This list is NOT comprehensive, but flags some important issues. Learn more on EdSurge.
In general, be careful about changes to your privacy policy. You may need permission if the uses of data are different from what your policy previously stated. Under COPPA, material changes to the policy may require specific notice and an obligation not to use data differently than promised under the prior policy.
If you provide a service targeted toward schools and have contractual agreements with schools, FERPA generally requires: