Skip to main content
All CollectionsStudent Data Privacy
Illinois Privacy Laws (SOPPA)
Illinois Privacy Laws (SOPPA)

The Student Online Privacy Protection Act (SOPPA) went into effect in July 2021.

Updated over 6 months ago

If your administrator or IT department is asking about SLP Toolkit compliance with the Illinois SOPPA law, we've got you covered. You can find information about how to comply with the new regulations below. Although we are well versed in the new statutes, we are not legal experts (we stick to speech pathology and software). So you should consult your district about how to fully comply too.

1. The Details

If you're so inclined, you can read all the details concerning (105 ILCS 85/1), which is the Student Online Privacy Protection Act. Here's a link to review the statute in detail (click here).

2. Post A List Of Data Elements Collected

You can view all the student data elements that we collect, along with the reason we collect them in the knowledge base article below. You can print out a copy or save a PDF for your records.

3. Post A List Of Operators And Their Contracts

You can list us as an operator with the following information:

SLP Toolkit, LLC

124 W 1st St

Mesa, AZ 85201
privacy@slptoolkit.com

ILLINOIS PRIVACY CONTRACT: For those of you who are members of the Illinois chapter of the Student Data Privacy Consortium (SDPC), we've got you covered. You can download the agreement they have provided here (click here), or sign Exhibit E to piggy-back off of another organization (click here).

NOTE: If your district would prefer a generic agreement, you can generate and download a signed data sharing & privacy agreement (DSPA) using this form (click here).

4. Identify Any Subcontractors Using Data Elements

We use subcontractors to store and access student data. Their information and their policies concerning privacy and security are listed in the knowledge base article below.

5. Maintain A Process for FERPA Parental Rights

SLP Toolkit complies with FERPA and more information can be found in the article below.

6. Publish Data Breaches

In the unlikely event of a data breach, we notify your organization according to the procedures outlined in our contracts (see step 4 above for details). Note that all of our student data is also encrypted when stored in our databases, which means that anyone getting their hands on the data would not be able to read it without a lot of computing power to crack the encryption. You can read more about our security measure in the next step too.

7. Maintain Reasonable Security Measures

SLP Toolkit uses best practices to securely store and transmit data to the SLPs with authorized access. You can read more about how we keep your data safe in the article below.

8. Additional Things To Know

We've included this one for completeness. You can figure out what to document with respect to SLP Toolkit for your district using the previous steps :)

  • Designate a privacy officer

  • Post a list of all contractors/subcontractors using data elements

  • Know what tools are being accessed

  • Designate a contract signing authority

Hopefully, this demystifies the new statute and you can get on with helping the students. As always, let us know if there are any questions about this or other privacy standards.

Did this answer your question?