The Student Data Privacy Landscape in Arizona

March 10, 2022 | 4 minutes read
The Student Data Privacy Landscape in Arizona

Arizona’s Student Online Personal Information Protection Act or SOPIPA, also known as SB 1314 is a student data protection law that was passed in 2017. Arizona’s SB 1314 was passed to provide legal protections for students within the state in relation to the personal data they share with teachers, online operators, technology providers, and associated third parties when attending educational institutions. With this being said, the law sets forth the requirements that teachers and online operators must adhere to as it concerns collecting, maintaining, and disclosing student data within the state of Arizona. Furthermore, the law also outlines the specific categories of personal data that are covered under the law.

How are online operators defined under the law?

Under Arizona’s SB 1314, an online operator is defined as “the operator of an internet website, online service, online application or mobile application with actual knowledge that the site, service or application is used primarily for school purposes and was designed and marketed for school purposes.” Alternatively, the law defines school purposes to mean “purposes that are directed by or customarily take place at the direction of a public school or teacher, or that aid in the administration of school activities, including instruction in the classroom, instruction at home, administrative activities and collaboration between students, school personnel or parents, or that are otherwise for the use and benefit of the school.”

What are the duties of online operators under the law?

Under the provisions of Arizona’s SB 1314, online operators that serve students within the state have the following obligations and responsibilities in regards to the data and privacy protection of said students:

What data elements are protected under the law?

Under Arizona’s SB 1314, the data elements relating to students within the state that are legally protected from unauthorized access and disclosure include but are not limited to:

What are the penalties for violating Arizona’s SB 1314?

As it pertains to the enforcement of the law, the provisions laid out in Arizona’s SB 1314 are enforced by the Arizona state attorney general. To this point, the Arizona state attorney general has the authority to both investigate and take appropriate action against online operators, educational institutions, and other relevant third parties that are found to be in violation of any of the sections established in the law. What’s more, violations of Arizona’s SB 1314 also constitute an unlawful practice under other applicable legislation within the state. As such, individuals and organizations within Arizona that are found to have violated the law are also subject to additional penalties.

Arizona’s SB 1314 is the foremost law within the state aimed at protecting the personal data that students share with their teachers, online operators, and the various other professionals that work within or in conjunction with educational institutions. Through the provisions of the law, parents and guardians can have the peace of mind that the personal data of their respective children is being protected from harm and misuse. As data breaches are growing even more common due to humanity’s ever-increasing reliance on online usage, legislation such as Arizona’s SB 1314 will become even more relevant moving forward, as many countries around the world have taken to passing such laws to protect the data privacy of their respective citizenship.

Related Reads

Blurring Faces from Videos and The Truth About Body-Worn Camera Privacy
September 06, 2023 | 4 minutes read
Blurring Faces from Videos and The Truth About Body-Worn Camera Privacy

Body-worn cameras are an essential piece of equipment for law enforcement officers and the redaction of faces from BWC footage is necessary to protect the privacy of individuals.

Learn More »
Sensitive Information, Protected: Patient Privacy, HIPAA, And You
August 30, 2023 | 4 minutes read
Sensitive Information, Protected: Patient Privacy, HIPAA, And You

HIPAA compliance ensures patient privacy. Often making the consequences of non-compliance severe, so how do you avoid that?

Learn More »
Protecting Privacy in the Healthcare Field: PII, PHI & PCI
July 12, 2023 | 5 minutes read
Protecting Privacy in the Healthcare Field: PII, PHI & PCI

Healthcare professionals handle a wide range of sensitive data that is crucial for delivering quality care. But protecting that data is getting harder.

Learn More »
FISA Section 702, Is The US Government Monitoring You?
June 26, 2023 | 6 minutes read
FISA Section 702, Is The US Government Monitoring You?

Is there a give-and-take relationship that must be accepted when it comes to keeping the country safe? Should U.S. persons be okay with the incidental collection of their conversations in the name of national security under FISA Section 702? Even when it violates their constitutional rights? Well, that’s up to Congress to decide.

Learn More »
Using Redaction for Privacy Maintenance as An Investigator
May 31, 2023 | 5 minutes read
Using Redaction for Privacy Maintenance as An Investigator

These oaths emphasize upholding the law, serving the public, and protecting the rights of individuals. One of these many rights is privacy. An investigator must adhere to the legal and ethical guidelines within the jurisdiction and perform their investigation within those specifically set boundaries.

Learn More »
Arizona’s Proposed New Law on Public Records Requests
March 13, 2023 | 7 minutes read
Arizona’s Proposed New Law on Public Records Requests

A Bit of History The date February 14th might stand out to most of us, and if you haven’t figured out why, it’s because it is the anniversary of Arizona’s Statehood. Over 100 years ago, Arizona became the 48th state to be admitted into the United States. Since governance is as old as human history, […]

Learn More »