If you’re part of an education company that does business in Europe—or that ever hopes to do business there—you need to know the GDPR.
The General Data Protection Regulation, which took effect in May, is a sweeping new European law that sets broad data-privacy rules for organizations processing data on citizens of the European Union. That includes many ed-tech providers in the United States and elsewhere, whose work marketing and selling their products in Europe and other foreign markets has been made easier by technology.
You’ve probably been awash in e-mails over the past few months from companies telling you about updates to their privacy policies and asking you to agree to the change. Many of them are almost certainly doing so with the GDPR squarely in mind.
On Tuesday, July 17 at 2 p.m. eastern, EdWeek Market Brief will host a webinar that gives ed-tech companies and others an in-depth look at how they can comply with the law. You can register for the event here.
The law sets tougher standards on companies in many areas. It requires new forms of consent before tech providers can process K-12 data; says privacy policies have to be written in clear, jargon-free language; gives individuals the right to access and get copies of the data collected on them; and in many circumstances guarantees people a “right to be forgotten,” among many other changes.
I’ll be joined in the webinar by a pair of guests who have studied the GDPR extensively and who know data-privacy law and the implications for schools.
The first is Carl E. Schonander, the senior director for international public policy at the Software & Information Industry Association, a group that represents a wide swath of ed-tech companies. The other guest is Gabriela Zanfir-Fortuna, policy counsel on European Union issues for the Future of Privacy Forum, a nonprofit that brings together industry, consumer advocates, and researchers on tech and privacy issues.
“This is a complex law and a complex framework,” one consultant to tech companies told me recently, in a story I wrote for EdWeek Market Brief about the GDPR. “My advice to companies at this point is ‘Don’t panic.’ If you have not started to make changes, start. If you have started, keep going.”
Our webinar will help companies dissect the GDPR and figure out how they can get on the right path.
- Europe’s New Data-Privacy Law: What the GDPR Means for K-12 Companies
- Most Ed-Tech Companies Don’t Meet Minimum Criteria in Their Privacy Policies, Study Says
- Webinar Offers Companies Advice on Navigating Student-Data Privacy Laws
- Student Data Privacy: How Parents’ Views Can Shape K-12 Companies’ Work
- Learning From the ‘Accidental Consequences’ of Student Data Privacy Law