Home

Cybersecurity Basics

Phishing Awareness

Resources & Tools

Reporting a Threat

Contact Us

In an increasingly digital world, protecting sensitive information and school data is more important than ever. Cybersecurity refers to the measures taken to safeguard computers, networks, and data from unauthorized access or attacks. This page provides you with basic but essential cybersecurity practices.

Overview: Data privacy is the practice of ensuring that sensitive information, particularly Personally Identifiable Information (PII), is safeguarded against unauthorized access and disclosure. In a school setting, it is crucial to protect the PII of students, faculty, and staff. This information can include names, addresses, phone numbers, email addresses, and other identifying data that could be misused if not properly secured.

Content:

• What is PII?: PII refers to any data that can identify an individual, either directly (such as a full name or social security number) or indirectly when combined with other information (such as a date of birth or email address). For example:

  • Direct identifiers: Full names, social security numbers, passport numbers.

  • Indirect identifiers: Gender, date of birth, and geographic indicators like zip codes, when combined, could potentially identify someone.

• Why is Protecting PII Important?

  • Compliance: Schools are legally obligated to protect student and staff information under laws like the Family Educational Rights and Privacy Act (FERPA). Failing to do so can lead to penalties, loss of trust, and data breaches.

  • Prevention of Identity Theft: By protecting PII, schools reduce the risk of unauthorized individuals accessing sensitive information that could be used for identity theft or fraud.

  • Security: Keeping data private protects against cyber threats and breaches that could disrupt the educational environment.

• School Data Policies: Data privacy is a critical component of Albany County School District #1 (ACSD#1) operations. The protection and management of the various types of student and staff Personally Identifiable Information (PII) is critical to ACSD#1 operations.  ACSD#1 computer systems and related devices collect and record data as required for educational delivery, management, and reporting purposes.  This key information should never be disclosed to unauthorized individuals. More information on ACSD1 Policy #8001 can be found here.

• Best Practices for Protecting PII

  1. Encryption: Always ensure sensitive information is encrypted when stored or transmitted.

  2. Minimal Data Collection: Only collect and store the data that is absolutely necessary for educational purposes.

  3. Access Control: Limit access to sensitive data to only those who need it for their job functions.

  4. Regular Audits: Conduct regular data audits to ensure that PII is properly managed and secured.

  5. Data Disposal: Properly delete and destroy sensitive information when it is no longer needed.

  By following these best practices, schools can ensure that they are taking proactive steps to secure PII and protect the privacy of their community members.

Keeping Your Devices Safe
School-issued devices should be treated with the highest level of security. Whether you’re using a Chromebook, desktop, or tablet, maintaining device security protects both personal and school data.

Actionable Tips:

• Enable automatic updates to ensure your device has the latest security patches.

• Always lock your device when not in use.

• Install and run anti-virus software if applicable.

Stay Safe Online
The internet is filled with potential threats, from phishing websites to malicious downloads. Learning how to navigate the web safely is key to avoiding these dangers.

Best Practices:

• Use only school-approved websites and applications.

• Check for "https://" before entering any personal information on a site.

• Avoid downloading content from untrusted sources.

Why Strong Passwords Matter
Passwords are your first line of defense. Ensure your accounts are protected by creating strong, unique passwords for each platform you use.

Actionable Tips:

• Use a mix of letters, numbers, and symbols.

• Never reuse passwords across multiple sites.

• Consider using a password manager to securely store complex passwords.

Recognizing Phishing and Scams
Emails and social media platforms are common entry points for hackers. Be cautious when receiving unsolicited emails or messages and always verify their authenticity.

Best Practices:

• Avoid clicking on links or downloading attachments from unknown senders.

• Never share personal or sensitive information on social media.

• Report any suspicious emails to the school’s IT department.

External Links

• FTC Cybersecurity Basics

• StaySafeOnline