Privacy & Security

School Board Member’s Use of Student Records Stirs Dust-Up

By Stephen Sawchuk — October 22, 2019 4 min read
  • Save to favorites
  • Print

A little story out of Lexington, Ky., raises some big questions for K-12 districts to consider on how to handle ongoing murkiness over student privacy, open-records laws, and how candidates for school boards should best communicate with their constituents.

The hubbub occurred after Will Nash, who was appointed to the Fayette County district’s school board last year, submitted an open-records request to the district for directory information, including the name, address, and phone number of parents in his board district. After the school district supplied the information, Nash sent out about 12,000 individual texts asking for support in the upcoming school board election, in addition to mailing out a survey.

Soon the district started getting some calls of its own—from irate parents.

The district appears to have mistakenly released some emergency contact information, not traditional directory information, which typically consists of things like students’ names and addresses. Some people without children in the district’s schools—and even some located out of state—got the solicitations.

But even parents with students in the district felt like their privacy had been invaded, according to local news reports.

The Lexington Herald Leader reported that district officials acknowledged failing to follow their own procedures for vetting open-records requests. The Fayette County district’s confidentiality handbook says that student directory information can be released only in connection with “student help activities,” like awards and scholarships, and the requests must be vetted by the superintendent, which didn’t happen in this case.

Using directory data for the purposes of a school board race may be a first, but it’s a good reminder that basic directory information can be put to many types of uses.

Amassing Data

Unlike most other student records, directory information generally doesn’t need parental consent for release. Parents generally have to opt out of sharing directory information, usually in writing or via an annual opt-out form. Just what counts as directory information varies from district to district; some school districts also include students’ enrollment status, honors, even height and weight, in the case of student athletes.

It’s through directory information requests that colleges, marketers, and nonprofits get the data they need to mail students admissions brochures, class-ring solicitations, and even scholarship notices.

Campaigns, meanwhile, have long used publicly available data sets to create mailing lists, and text messages are just the newest wrinkle in campaign communications. (In fact, whether campaign-related text messages should be regulated in the same way that robocalls and other automated marketing are remains a matter of debate; the Federal Communications Commission has so far not clarified the issue.)

In an interview, Nash said he never meant to upset parents. He said he requested the information out of a genuine desire to combat the very low turnout that typically accompanies school board and other down-ballot races. He said he made his open-records request as a private citizen, not as a board member, and that the district had no hand in paying for the texts or flyers.

“As a school board member, I know that I hear from a very vocal superminority of my constituents, and there is no way to reach out to your constituents unless you build a database yourself,” he said in an interview. And that applies to school board candidates, too, he added.

Nash apologized to the district in a lengthy statement and got a dressing-down by the school board president, but that hasn’t stopped other fallout. His rival for the board seat, Christy Morris, has accused him of abusing his public position. “This information was then used for personal and political gain weeks before a high-stakes election by a trained board member who knew or should have known this was unethical and wrong,” she said in a Facebook post.

Does Intent Matter?

Fayette officials, the newspaper reported, say they plan to insert “even more restrictive” policies around directory information records requests, and Nash said he supports that move.

But not all experts agree that the district is handling the situation correctly.

Frank LoMonte, an expert on open-records law and on the Family Educational Rights and Privacy Act, said Kentucky school districts should not be able to ask for the intent behind a directory information request before determining whether to fill it. Most states don’t consider directory information to comprise an invasion of privacy, so curbing access to it raises a host of concerns.

“Once you invite an agency to determine who gets documents, that opens the door to discriminating against journalists you don’t like, or your critics, or your competitors,” said LoMonte, the director of the Brechner Center for Freedom of Information at the University of Florida.

And arguably, he said, that public information should include cellphone numbers of the kind that Nash was given.

“I don’t know of any court that has said a cellphone number is an intimate piece of information, given how readily people give them out,” he said.

The question of which data can be permissibly released, of course, is a different one from whether using it the way Nash did is a good idea or not.

“You’re running the risk you’re going to alienate many more people than you’re appealing to,” LoMonte concluded.

A version of this article appeared in the October 23, 2019 edition of Education Week as School Board Member’s Use of Student Records Stirs Dust-Up

Events

Ed-Tech Policy Webinar Artificial Intelligence in Practice: Building a Roadmap for AI Use in Schools
AI in education: game-changer or classroom chaos? Join our webinar & learn how to navigate this evolving tech responsibly.
Education Webinar Developing and Executing Impactful Research Campaigns to Fuel Your Ed Marketing Strategy 
Develop impactful research campaigns to fuel your marketing. Join the EdWeek Research Center for a webinar with actionable take-aways for companies who sell to K-12 districts.
This content is provided by our sponsor. It is not written by and does not necessarily reflect the views of Education Week's editorial staff.
Sponsor
Privacy & Security Webinar
Navigating Cybersecurity: Securing District Documents and Data
Learn how K-12 districts are addressing the challenges of maintaining a secure tech environment, managing documents and data, automating critical processes, and doing it all with limited resources.
Content provided by Softdocs

EdWeek Top School Jobs

Teacher Jobs
Search over ten thousand teaching jobs nationwide — elementary, middle, high school and more.
View Jobs
Principal Jobs
Find hundreds of jobs for principals, assistant principals, and other school leadership roles.
View Jobs
Administrator Jobs
Over a thousand district-level jobs: superintendents, directors, more.
View Jobs
Support Staff Jobs
Search thousands of jobs, from paraprofessionals to counselors and more.
View Jobs

Read Next

Privacy & Security A New Federal Taskforce Targets Cybersecurity in Schools
The “government coordinating council" aims to provide training, policies, and best practices.
3 min read
Illustration of computer and lock.
iStock / Getty Images Plus
Privacy & Security Q&A Why One Tech Leader Prioritizes Explaining Student Data Privacy to Teachers
Jun Kim, the director of technology for an Oklahoma school district, helped build a statewide database of vetted learning platforms.
3 min read
Jun Kim, Director of Technology for Moore Public Schools, poses for a portrait outside the Center for Technology on Dec. 13, 2023 in Moore, Okla.
Jun Kim, is the director of technology for the Moore school district in Moore, Okla., He has made securing student data a priority for the district and the state.
Brett Deering for Education Week
Privacy & Security A Massive Data Leak Exposed School Lockdown Plans. What Districts Need to Know
More than 4 million records held by school safety software company Raptor Technologies were left inadvertently exposed online.
5 min read
Concept image of security breach, system hacked alert with red broken padlock icon showing vulnerable access.
Nicolas Herrbach/iStock/Getty
Privacy & Security As Cyberattacks Mount, Lawmakers Double Their Efforts to Protect Schools
But the legislative push is not matched by funds to build better cyber defenses.
2 min read
Conceptual illustration of computer with a pixelated lock on screen.
Nanzeeba Ibnat/iStock/Getty Images Plus