Privacy Impact Assessment for the Migrant Student Information Exchange (MSIX)

Privacy Impact Assessment for the Migrant Student Information Exchange (MSIX)
Date
May 24, 2006
Contact Point
System Owner: Francisco Garcia
Author: Jennifer K. Dozier
Office of Elementary and Secondary Education (OESE) U.S. Department of Education
US Department Privacy Impact Assessment
Office of Elementary and Secondary Education (OESE)
Migrant Student Information Exchange (MSIX)
of Education
1. What information will be collected for the system (Ex. name, social security number, annual income, etc)?
Student identification data including name, birth date, test results, course history with grades, immunization data, etc. For a complete list of data elements gathered see Appendix A.
2. Why is this information being collected?
This information is collected to assist States in the electronic exchange of pertinent educational and health related information in accordance with the statutory requirements of Section 1308(b) of the Elementary and Secondary Education Act as amended by the No Child Left Behind Act of 2001 (NCLB).
3. How will the information be used?
The information will be used to facilitate the timely enrollment, grade and course placement, and credit accrual of migrant students who move from one district or State to another due to their migrant lifestyle.
4. Will this information be shared with any other agency? (If so, with which agency or agencies?)
No.
5. Describe the notice or opportunities for consent that are provided to individuals about what information is collected and how that information is shared with other organizations. (e.g., posted Privacy Notice).
The following notice will be provided to users regarding what information is collected and how that information is shared:
“You must read the statement below, and click "Continue" to access the Department of Education's MSIX website. Some users may need to scroll to the bottom of the screen to see the "Continue" button.
This is a United States Department of Education computer system, which may be accessed and used only for official Government business by authorized personnel. Unauthorized access or use of this computer system may subject violators to criminal, civil, and/or administrative action.
This system contains personal information protected under the provisions of the Privacy Act of 1974, 5 U.S.C. § 552a -- as amended. Violations of the provisions of the Act may subject the offender to criminal penalties.”
May 24, 2006 page 2
US Department Privacy Impact Assessment
Office of Elementary and Secondary Education (OESE)
Migrant Student Information Exchange (MSIX)
of Education
6. How will the information be secured?
The Migrant Student Information Exchange is a major application requiring a system security plan per OMB Circular A-130, “Management of Federal Information Resources”, Appendix III, “Security of Federal Automated Information Resources,” and of Public Law 100-235, “Computer Security Act of 1987.” A system security plan has been developed in alignment with OMB and legal requirements. This plan details the security requirements and describes the security controls that are in place to meet those requirements.
7. Is a system of records being created or updated with the collection of this information?
Yes <snip>