Here is the argument for more education and training. I posted this over on DataBreaches.net earlier, but anyone interested in education sector privacy should think about what this teaches us. Ashley Martin reports:
The Regina Public School Division is addressing policy gaps after a teacher uploaded more than 2,000 documents, many containing students’ information, to a public website.
Some of the information was online for 15 months before the privacy breach was reported to the Office of the Saskatchewan Information and Privacy Commissioner on Sept. 1. The documents have since been removed.
[…]
The teacher at W.F. Ready School posted student assignments, letters to parents, photos, birthdates, grades and passwords to his church website beginning in May 2016.
“He had uploaded the documents to a subdirectory of the church’s website, mistakenly believing he would be the only person, as the website administrator, to be able to access the documents,” wrote privacy commissioner Ronald Kruzeniski in his report dated Dec. 19.
Read more on Regina Leader-Post.