Unauthorized disclosures of student information typically violate laws like FERPA (Family Educational Rights and Privacy Act) in the US, which protects personally identifiable information (PII) in education records. These occur when schools or staff share student data—such as grades, disciplinary records, or personal details—without consent or legitimate educational interest. Common examples include posting grades publicly with names or IDs, emailing records to unauthorized parties, or discussing private student matters openly.

Key Examples

  • Public grade postings : Taping a list of student grades outside an office with names or ID numbers visible, as even partial identifiers count as PII disclosure.
  • Group emails : Sending student info to multiple recipients where all can see others' details, like a class grade list.
  • Verbal discussions : A teacher explaining a student's absence or behavior publicly without consent.
  • Social media shares : Posting student work, photos, or stories online with identifiable info, as seen in recent educator TikTok debates.

Prevention Tips

Schools avoid violations by using secure portals for grades, obtaining written consent for third-party shares, and training staff on PII handling. Digital tools must encrypt records, and directory info (like names) requires opt-out options.

TL;DR : Unauthorized disclosures include any non-consensual sharing of PII like grades or records; always verify need-to-know access.