53E-9-304. Student data ownership and access -- Notification in case of significant data breach.
164 words·~1 min read·
/ut/title-53e/chapter-9/53e-9-304A research copy — for the controlling text, always check the official state or federal source. Not legal advice.
Effective 5/12/2020
53E-9-304. Student data ownership and access -- Notification in case of significant data breach.
(a)A student owns the student's personally identifiable student data.
(b)An education entity shall allow the following individuals to access a student's student data that is maintained by the education entity:
(i)the student's parent;
(ii)the student; and
(iii)in accordance with the education entity's internal policy described in Section 53E-9-303 and in the absence of a parent, an individual acting as a parent to the student.
(a)If a significant data breach occurs at an education entity, the education entity shall notify:
(i)the student, if the student is an adult student; or
(ii)the student's parent, if the student is not an adult student.
(b)In accordance with Title 63G, Chapter 3, Utah Administrative Rulemaking Act , the state board shall make rules to define a significant data breach described in Subsection (2)(a) .
Amended by Chapter 408 , 2020 General Session