FERPA Research Exceptions
Studies Exception
Schools can share PII for studies to improve instruction if: the study is conducted for the school, the study won't permit personal identification of students, and data is destroyed when no longer needed.
Audit/Evaluation Exception
Authorized representatives can access data to audit or evaluate federal programs. Written agreements must specify data to be disclosed, purpose, and destruction requirements.
FERPA Compliance
Ensure your data practices meet FERPA requirements and protect student privacy.
De-Identification
De-identified data isn't subject to FERPA. To de-identify: remove all direct identifiers (name, SSN, etc.), and ensure reasonable determination that remaining information doesn't identify individuals.
Data Sharing Agreements
Written agreements should include: purpose of disclosure, data elements shared, how data will be protected, who can access, and when data will be destroyed.
Resources & Guides
Access implementation guides, best practices, and training materials for your team.
Key Takeaways
- FERPA allows research sharing through studies and audit/evaluation exceptions with conditions.
- De-identified data isn't subject to FERPA—remove identifiers and ensure non-identification.
- Use written agreements specifying purpose, data elements, protections, and destruction.
Marcus Johnson
Director of Data Science
Data scientist specializing in educational analytics with expertise in growth modeling and predictive analytics for student outcomes.
