• Regulatory Gap: Cybersecurity at K-12 Schools
  • May 3, 2018 | Authors: Leora F. Ardizzone; Nicole Della Ragione
  • Law Firm: Ruskin Moscou Faltischek, P.C. - Uniondale Office
  • While data breaches at Equifax, Yahoo, Anthem and Target have made the national news, data breaches at school districts are not as widely publicized. Schools are a treasure trove of children’s personally identifiable information (PII) (e.g., name, address, Social Security number) and protected health information (PHI), as well as the PII and PHI of faculty and payment card information (e.g., debit and credit card numbers) of parents. Schools are particularly vulnerable to attack because districts with scarce funds must devote them to education, and cannot always divert precious resources to cybersecurity. However, economizing on cybersecurity can be shortsighted. The Federal