Acceptable use of technology resources

  1. Home
  2. Schools
  3. Student handbooks
  4. Acceptable use of technology resources

Acceptable Use of the District’s Technology Resources

Access may be given to the District’s Technology Resources for educational or district-related goals. The District’s Technology Resources are defined as the District’s network, servers, computer workstations, mobile devices, telephones, peripherals, applications, databases, library catalog, online resources, internet access, email, online class activities and any other technology designated for use by the District.

Please be advised that the rules and responsibilities outlined in the Conduct on the System section of the Student Handbook do also apply to the use of a District network account on a personal (BYOD) phone or mobile device. Inappropriate use of any District technology resource on a BYOD device can cause the consequences in this section, to include losing the privilege to access and/or use an NISD network account.

Student Behavior on the Technology Resources:

When using district technology (email, online communication, blogs, devices etc.), everyone must follow these rules:

  1. Students are responsible for the proper use of their district accounts.
  2. Students are to never share their login or password.
  3. Students cannot use another person's account to access their information.
  4. Students cannot use encryption software or methods to hide electronic communications.
  5. Students cannot share copyrighted programs or data without written permission from the copyright owner.
  6. Students cannot send, forward, or post messages that are abusive, obscene, vulgar, pornographic, sexually explicit, threatening, harassing, damaging to someone's reputation, or illegal.
  7. Students cannot waste district technology resources (e.g., spamming email, distributing unnecessary videos or photos, listening to internet radio, playing online games).

Bring Your Own Device (BYOD) Guidelines

Northside ISD recognizes that mobile phones and other digital devices are an integral part of our culture and way of life and can provide considerable value, particularly in relation to individual safety.  It is also recognized that such technology will play a significant part in the education of the 21st century student, but this use should follow agreed rules and guidelines to prevent classroom disruption, student misuse and teacher difficulties. Northside will allow students and staff to bring personally owned mobile technology devices to school to support educational or district related goals. Cell phones must be stored during school hours and not used during class instruction. 

Responsibility of Students and Parents
Anyone bringing a personally owned mobile device to a campus or department must abide by the guidelines below. Failure to follow these guidelines may subject the owner of the device to the District’s Code of Conduct or loss of use of the device.

It is the parent’s decision to allow their children to bring a mobile device to school and they need to be aware when their child has the mobile device with them.

Responsibility for the mobile device rests with the device owner. The District accepts no financial responsibility for damage, loss or theft.  The mobile device should be kept secure when not in use.  Mobile devices should not be left  in any open area unattended.

Understand that mobile devices with data or Internet access plans have the capability of accessing unfiltered Internet content through the data plan.

All costs for data plans and fees associated with mobile devices are the responsibility of the mobile device owner.

Acceptable Use of BYOD Devices
Specific acceptable use of a mobile device will be determined by each campus. 

  • Each teacher has the right to allow or disallow the use of devices that support student achievement during instructional time as appropriate.
  • Devices with Internet access capabilities will access the Internet only through the school’s filtered network while on school property during school hours.
  • Devices should not be used in any manner or place that is disruptive to the normal routine of class/school.
     

Unacceptable Use of BYOD Devices
Any use of a device that interferes with or disrupts normal school or classroom procedures is prohibited.  This prohibition extends to activities that occur off school property and outside of school hours if the result of that activity causes a disruption to the educational environment.

  • Using unauthorized proxy software or tweaking a mobile device to bypass the District filter or firewall is strictly prohibited.
  • Using devices to bully and/or threaten other students or staff members is unacceptable and will not be tolerated.
  • Pictures and videos must not be taken of students, teachers or other individuals without their permission.
  • Any use of a device that is deemed a criminal offense, will be dealt with as such by the District.

Responsible Use Guidelines

With the use of technology embedded in curriculum and events, Northside ISD is prepared to provide our students, staff, and guests with access to technology, including the Internet and a robust network (learn more about funding requirements on Northside ISD Technology Guidelines & Policy). The operation of technology in the district relies heavily on the proper conduct of the users while using district resources. Users are expected to act responsibly, ethically, and legally in accordance with the missions and purposes of the resources they use with state and federal guidelines. Adherence to the following is necessary for continued access to ANY and ALL technology resources while at school or using district resources.

Students will receive accounts when parents accept the Acceptable Use Policy during annual registration. 

Northside ISD students and parent/guardians understand and agree to:

  1. Northside ISD has the right to restrict access to any technology resources at any time.
     
  2. The use of Northside ISD equipment and associated technology is a privilege, and it should be used responsibly in support of academics.
     
  3. There are no exceptions to privacy while using District technology resources. (See Technology Protection Measures for more insights into ways Northside ISD protects student information and access)
     
  4. Students must secure their district credentials by implementing the following measures:
    1. Students may only log in using their District-assigned username.
    2. Account Security: All users are responsible for the proper use of their District accounts. User logins and passwords must NEVER be shared with anyone. If a student feels their account has been compromised they must report that to the campus staff.
    3. Accessing Others' Accounts: Using another person's system account to access their data is prohibited.
       
  5. Students must display appropriate use of communication tools.
    1. Prohibited Content: Users must not send, forward, or post messages that are abusive, obscene, vulgar, pornographic, sexually oriented, threatening, harassing, damaging to another’s reputation, or illegal.
    2. Resource Management: Users must not waste District Technology Resources (e.g., e-mail spamming, distributing videos or photos, listening to Internet radio, online gaming, etc.).
    3. Refraining from distributing private information about others or themselves (such as full name, date of birth, address, phone number, Social Security Number, etc.) on blogs, web forms, or other websites.
       
  6. Students must protect the integrity of resources.
    1. Security:
      1. Observe and comply with District filtering
      2. Report security risks or violations to the appropriate staff
    2. Encryption: Using encryption software to hide or obscure electronic communications is prohibited.
    3. Copyright Compliance:
      1. Users must not redistribute copyrighted programs or data without written permission from the District.
      2. Follow copyright laws (Title 17).
      3. Cite sources when using others’ work or using Artificial Intelligence (AI) for assignments.
    4. Hardware (See more about device responsibility at Northside ISD Technology Guidelines & Policy)
      1. Not making changes to the setting in hardware, software, or network.
      2. Not vandalizing data, networks, or hardware. 
         
  7. In the context of utilizing district communication tools, students are expected to uphold the principles of digital citizenship.
    1. E-mail/Chat Management: Users must manage e-mail in accordance with established regulations and retention guidelines. (See more at Northside ISD Technology Guidelines & Policy)
    2. Representation: Be aware that using school-related email addresses might give recipients the impression that you are representing the District or school.
    3. Confidential Information:
      1. Do not send emails/chats that contain personally identifiable information about students or staff unless required by law or for professional purposes.
      2. Do not created shared documents with personally identifiable information about students or staff unless required by law or for professional purposes.
    4. Digital Citizenship: Communicate in ways that are kind and respectful. Students should report threatening communications to staff.
       
  8. Students should use email and chat functionality responsibly and refraining from communication broadcasts.
    1. District-wide: Must be approved by the Assistant Superintendent of Communications.
    2. Campus/Department-wide: Must be approved by the campus Principal.
       
  9. Students should be respectful and responsible when managing district equipment.
    1. Relocating Equipment:
      1. Students must obtain approval from their Principal before disconnecting or moving District computer workstations.
      2. Students are expected to keep equipment in good, working condition without alterations, markings, or damage of any kind. Failure to do so may result in consequences deemed appropriate by campus administration.
    2. Device 1:1: Students are responsible for:
      1. following Device 1:1 expectations and care outlined in the Northside ISD Device Care Campaign (found on nisd.net/district/technology and at nisd.net/privacy)
      2. returning devices to the campus before moving from the district or transferring to another campus and at the end of the school year.
      3. honoring guidelines in the Technology Lending Agreement while obtaining a District device.
      4. Reporting wear and tear as well as damage to appropriate campus staff. 

Consequences for violation of any of the above or inappropriate use are subject to disciplinary action as written in the Student Code of Conduct at the discretion of the campus administration team.

We believe the curriculum drives technology usage in the classroom. It is the district's policy to maintain an environment that promotes ethical and responsible conduct with all electronic resources and activities. This privilege and extraordinary opportunity to explore resources comes with a responsibility for parents/guardians and students. When utilizing technology or digital resources provided by Northside ISD, students and families must strictly adhere to the Northside ISD Responsible Use Policy at all times. This policy applies when using Northside resources on personal devices on District property, at home, or during school-related activities. 

Please note that Internet access is part of the District’s Technology Resources.  The Internet is a network of many types of communication and information networks, which are used frequently in classroom assignments and include access to library materials and purchased online curriculum and databases. Some material accessible via the Internet may contain content that is illegal, inaccurate, or potentially offensive.  It is possible for users of the District’s Technology Resources to access (accidentally or otherwise) these areas of content.  While the District uses filtering technology and protection measures to restrict access to such material, it is not possible to prevent such access in every instance, the district has an Internet Safety Committee to review reported sites and disable them from view (See more at Technology Protection Measures).

Consequences for inappropriate use

  • Suspension of access to the District’s Technology Resources;
  • Revocation of the District’s Technology Resources account(s); and/or
  • Other appropriate disciplinary or legal action in accordance with the handbook(s) and applicable laws.

Note: The agreement to abide by these guidelines must be renewed each academic year through the annual registration process.

Technology Use Guidelines for Northside ISD

What are "Technology Resources"?
Technology resources includes everything from district internet, computers, phones, and email to online digital tools used by students and staff. Staff teach students how to use these tools safely and responsibly, following district rules about internet safety, appropriate online behavior, and cyberbullying as written in the TEA Technology TEKS. 

Getting Access to Technology Resources

  • Students: Students in all grades will get access to the district's computer network after a guardian completes the Acceptable Use Policy during annual registration.
  • Teachers: Teachers are responsible for their class accounts and must never share their login information with students or other staff.
  • Security risks: Anyone who is a security risk or breaks these rules defined the student handbook or Acceptable Use Policy may lose access to our technology. Everyone must sign or agree to a user agreement each year to get or keep an account.

Important Permissions

  • Copyrighted materials: We cannot put copyrighted software or information on our network without permission from the owner.
  • Student or employee work: We need written permission from guardians before the district can post their original work on a district website.
  • Student personal information: We won't put your child's personal information on a district website without your written permission. The only exception is "directory information" as allowed by law and district policy.
  • Student accounts: Students will not get a student account or access to technology resources until a guardian completes the necessary consent in annual online registration which consents to Acceptable Use Policy.

Internet Filtering
The district has an Internet Safety Committee that chooses and manages technology to block websites that are inappropriate or harmful for children. All internet access on district-connected devices (wired or wireless) will be monitored and filtered.

Blocked content includes (but is not limited to):

  • Nudity/pornography
  • Images or descriptions of sexual acts
  • Promotion of violence, illegal weapons, drug use, discrimination, or hate groups
  • Instructions for criminal acts (like bomb making or hacking)
  • Online gambling

Website Unblock Request
Northside staff can ask the Internet Safety Committee to unblock a site for legitimate research or education purposes. If their request is denied, they can appeal to the Superintendent for review.

Technology Supervision Responsibilities
The Superintendent or their chosen staff will:

  1. Share and enforce district policies and rules for technology use.
  2. Make sure all users read and agree to these rules annually. We will keep a record of these agreements.
  3. Ensure employees supervise students' device activity.
  4. Ensure employees train students on how to use technology safely and properly.
  5. Make sure all software on district computers follows district standards and is legally licensed.
  6. Be allowed to monitor all system activities, including emails, to ensure student online safety and proper use of technology.
  7. Be allowed to change filtering policies for legitimate research or lawful purposes with approval from the Internet Safety Committee.
  8. Set and enforce how long emails are kept on the district system.
  9. Be allowed to investigate district-owned devices if inappropriate use or malicious activity is suspected.
  10. Set and enforce limits for data storage on the district's system.

School staff will:

  1. Make sure any new applications required for teaching are approved through the proper process.
  2. Report any inappropriate websites to the Help Desk to be blocked.
  3. Monitor students' use of district equipment and teach them good digital citizenship.
  4. Include technology application skills in their teaching.
  5. Report compromised student passwords.
  6. Report broken or malfunctioning hardware to Technology Services.

No Vandalism
Students are not allowed to intentionally damage district equipment, technology resources, or data, or the data of other users or connected networks. Deliberately trying to slow down or disrupt the system is against district policy and may be illegal. This includes uploading, downloading, or creating computer viruses.

Vandalism will result in losing access to technology resources and potential requirements to pay for the cost of repairing the system, along with other consequences.

No Forgery
Faking or trying to fake email messages or signatures with district provided technology resources is not allowed. Trying to read, delete, copy, change, or intentionally interfere with someone else's ability to send/receive email, or using someone else's user ID and/or password, is also prohibited.

Information Content / Information from Others
Parents and students using the district's system should know that even with our safety measures, students might come across inaccurate or inappropriate material on the internet.

If a student finds such material, they should stop looking at it immediately and report it to their teacher.

A student who knowingly brings prohibited materials into the school's electronic environment will lose access to the system and face disciplinary action.

Disclaimer
The district's system is provided "as is, as available." We do not guarantee that the system will always work perfectly, meet your needs, or be error-free.

Opinions, advice, and information expressed by users, information providers, service providers, or other third parties on the system are their own and not the district's.

The district will fully cooperate with law enforcement in any investigation involving misuse of district technology.

Complaints About Copyright
If you have a complaint that copyrighted material is improperly on the district network, please contact:

  • Name: Jo Ann Fey
  • Position: Deputy Superintendent for Administration
  • Address: 5900 Evers Road
  • Telephone: (210) 397-8771
  • E-mail: joann.fey@nisd.net

Northside ISD Technology Guidelines

Internet Safety for Students

  • Filtering: The district uses filters to block inappropriate content (like obscene materials, child pornography, or harmful images) when students use school computers connected to the internet. These filters are always on for minors and can be temporarily turned off for adults if needed for legitimate research. 47 U.S.C. 254(h)(5); 47 CFR 54.520
  • Rules: The district has an internet safety policy that all users must follow. 47 U.S.C. 254(h)(5); 47 CFR 54.520
  • Funding: To receive federal funding for technology or discounts on internet services, the district must certify each year that these internet safety measures are in place and being enforced. Education Code 32.105 and 47 U.S.C. 254(h)(5)(A), (l); 47 CFR 54.520

Student Access to Technology

  • Providing Equipment: The district can use public money to buy, fix, or update computers that are given to students. They can also store and transport this equipment. Education Code 32.102(b)
  • Donations: The district can accept donations of technology equipment for students or money/services to help buy, fix, or update equipment. Education Code 32.102(b)
  • Eligibility: To receive a computer from the district, a student must not have access to such equipment at home. Priority will be given to students who are considered "educationally disadvantaged." Education Code 32.103

Equipment to Students

The following rules apply to schools and departments giving computer equipment to students as allowed by law:

  1. Plans to give computer equipment to students must first be approved by the Assistant Superintendent for Technology Services.
  2. A student can only receive equipment if they don't already have computer access at home, as determined by the principal and counselor.
  3. When giving equipment to students, the principal will prioritize students who are considered educationally disadvantaged.
  4. Before giving equipment to a student, the campus technology coordinator and principal must have a clear plan for:
  • How to decide which students are eligible.
  • An application process that explains the student's responsibilities for keeping, using, and owning the equipment at home.
  • How to distribute the equipment and teach students how to set it up and care for it.

Technology Protection Measures

In accordance with the appropriate certification, the District shall operate a technology protection measure that protects minors against access to visual depictions that are obscene, child pornography, or harmful to minors; and protects adults against access to visual depictions that are obscene or child pornography. 47 U.S.C. 254(h)(5)(B), (C)

Safety

Acceptable Use

The Superintendent or designee shall develop and implement administrative regulations, guidelines, and user agreements consistent with the purposes and mission of the District and with law and policy.

Access to District’s technology resources, including computers, the Internet, and other computer resources is a privilege, not a right. All users shall be required to acknowledge receipt and understanding of all policies and administrative regulations governing use of the system and shall agree in writing to allow monitoring of their use and to comply with these policies, regulations, and guidelines. Noncompliance may result in suspension of access or termination of privileges and other disciplinary action consistent with District policies. [See DH, FN series, FO series, and the Student Code of Conduct] Violations of law may result in criminal prosecution as well as disciplinary action by the District.

District Software

All software used in District computers must be legally licensed. Proper documentation must be maintained to include a Data Privacy Agreement for vendors to share with Personal Identifiable Information is collected and other legal requirements. 

Personal Software

Personal and non district approved software  may not be loaded on District computers.

Internet Safety Policy

A district that maintains its own notification procedures as part of an information security policy for the treatment of sensitive personal information that complies with the timing requirements for notice described below complies with Business and Commerce Code 521.053 if the district notifies affected persons in accordance with that policy.

The District shall adopt and implement an Internet safety policy that addresses:

  1. Control students’ access to inappropriate materials, as well as to materials that are harmful to minors;
  2. Ensure student safety and security when using electronic communications when using electronic mail, chat rooms, and other forms of direct electronic communications;
  3. Prevent unauthorized access, including hacking and other unlawful activities
  4. Restrict unauthorized disclosure, use, and dissemination of personally identifiable information regarding minors students;
  5. Measures designed to restrict minors’ access to materials harmful to minors
  6. Educate students about cyberbullying awareness and response and about appropriate online behavior, including interacting with other individuals on social networking Web sites and in chat rooms. 
    47 U.S.C. 254(l) and  Business and Commerce Code 521.053; Local Gov’t Code 205.010

Public Hearing

The District shall provide reasonable public notice and hold at least one public hearing or meeting to address the proposed Internet safety policy. 47 U.S.C. 254(h)(5)(A), (l)(1)
 

Cybersecurity 

Policy

Each district must adopt a cybersecurity policy that details how it will protect its cyber infrastructure from attacks and security incidents, as well as how it will assess and mitigate cybersecurity risks. The superintendent is responsible for appointing a cybersecurity coordinator who will serve as the main point of contact between the district and the Texas Education Agency (TEA) for all cybersecurity-related issues.

Report to TEA

The district’s cybersecurity coordinator shall report to TEA any cyber attack or other cybersecurity incident against the district cyber infrastructure that constitutes a breach of system security as soon as practicable after the discovery of the attack or incident.

The district’s cybersecurity coordinator shall provide notice to a parent of or person standing in parental relation to a student enrolled in the district of an attack or incident for which a report is required to TEA involving the student’s information.

Security Breach Notification to Individuals

If Your Child's Information is Affected:
If our school system has a security problem involving sensitive personal information we store about your child, and we believe an unauthorized person may have accessed it, we will tell you as soon as possible. The only times we might delay this are if the police are investigating a crime (see "When a Criminal Investigation is Happening" below) or if we need a little more time to figure out what happened and fix our computer systems.

If We Store Data for Others:
If we are holding sensitive personal information that belongs to another organization (not the school district), and there's a security problem where an unauthorized person may have accessed it, we will immediately tell that organization.

Notifying Credit Reporting Agencies:
If a security problem requires us to tell more than 10,000 people at once, we will also inform major credit reporting agencies about what happened, when we sent out notices, and what those notices said. We will do this without unnecessary delays.

When a Criminal Investigation is Happening:
We might hold off on telling you or the data owner about a security problem if a police agency says that telling you would get in the way of their criminal investigation. We will then tell you as soon as the police say it won't hurt their investigation.
 

Availability of Device Access 

Access to the District’s technology resources, including computers, the Internet, and other computer resources shall be made available to students and employees primarily for instructional and administrative purposes and in accordance with administrative regulations. Limited personal use of the system shall be permitted if the use:

  1. Imposes no tangible cost on the District;
  2. Does not unduly burden the District’s technology resources; and
  3. Has no adverse effect on an employee’s job performance or on a student’s academic performance

Definitions

“Breach of system security” means unauthorized acquisition of computerized data that compromises the security, confidentiality, or integrity of sensitive personal information maintained by a person, including data that is encrypted if the person accessing the data has the key required to decrypt the data.  Good faith acquisition of sensitive personal information by an employee or agent of the person for the purposes of the person is not a breach of system security unless the person uses or discloses the sensitive personal information in an unauthorized manner.  Business and Commerce Code 521.053(a)

“Sensitive personal information” or “Personal Identifiable Information (PII)” means:

  1. An individual’s first name or first initial and last name in combination with any one or more of the following items, if the name and the items are not encrypted:
    1. Social security number;
    2. Driver’s license number or government-issued identification number; or
    3. Account number or credit or debit card number in combination with any required security code, access code, or password that would permit access to an individual’s financial account; or
  2. Information that identifies an individual and relates to:
    1. The physical or mental health or condition of the individual;
    2. The provision of health care to the individual; or
    3. Payment for the provision of health care to the individual.

“Sensitive personal information” “Personal Identifiable Information (PII)” does not include publicly available information that is lawfully made available to the public from the federal government or a state or local government. Business and Commerce Code 521.002(a)(2), (b)

Learn more about Technology in Northside at nisd.net/district/technology

Data Governance Guidelines

Version: 1

Review Cycle: Annually (or as required by legal/regulatory changes) 

Last Update: Oct 13, 2025

1. Overview 
The Northside Independent School District (NISD) is committed to collecting, managing, and safeguarding information essential to its educational mission and ongoing operations. This commitment extends to both confidential and critical data, which are managed in accordance with federal and state laws, as well as ethical standards. These guidelines outline the roles, responsibilities, and procedures designed to ensure the secure and compliant management of all such data.

2. Purpose 
These guidelines aim to:

  • Promote responsible management of all district data assets from our data stewards.
  • Ensure compliance with all relevant legal, regulatory, and district requirements.
  • Define procedures for data access, storage, transmission, and disposal.
  • Cultivate accountability, transparency, and ongoing improvement in data governance.

3. Scope 
These guidelines apply to all individuals—including employees, contractors, vendors, and  volunteers—who access, process, store, transmit, or otherwise manage Northside ISD data,  whether in digital, printed, or verbal form. 

4. Key Definitions 

  • Confidential Data/Information: Information that the district is prohibited by law, policy or contract from disclosing or that the district may disclose only in limited circumstances. Confidential data includes, but is not limited to, personally identifiable information (PII) regarding students and employees.
  • Critical Data/Information: Information that is determined to be essential to district operations and that must be accurately and securely maintained to avoid disruption to district operations. Critical data is not necessarily confidential.
  • Data: Facts or information. Data can be in any form; oral, written, or electronic.
  • PII: Data elements that uniquely identify an individual (e.g., Names, Addresses, Social Security numbers, etc.)
  • Data Steward: An individual assigned responsibility for ensuring data accuracy,  quality, and security. 
     

5. Legal and Regulatory Compliance 
NISD maintains strict compliance with all applicable data protection statutes and  regulations, including but not limited to: 

  • FERPA: Protects student education records.
  • COPPA: Governs online data collection from children under 13.
  • CIPA: Filters and protects students from harmful online content.
  • PPRA: Regulates student surveys and marketing data use.
  • HIPAA: Secures health-related information.
  • TEC/TAC: Texas-specific education codes and admin rules.
  • SB 820 / HB 2087: Cybersecurity and vendor data use compliance.
  • PCI DSS: Payment card data security.
  • USDA/NSLA: Limits disclosure of meal program eligibility.
  • SCOPE Act: Requires digital service providers to protect minor children (under 18) from harmful content and data collection practices.
  • SB 1893: Prohibits the use of certain social media applications and services, such as TikTok, on governmental entity devices.
  • HB 3834: Outlines security awareness training requirements for state employees
     

6. Roles and Responsibilities 

District Leadership

  • Establish governance policies.
  • Oversee compliance with state/federal laws. 

Campus Principals 

  • Enforce policies on campus.
  • Appoint campus Record Liaison (for physical files).
  • Investigate and report misuse or breaches.
  • Enforce Digital Citizenship with students. 

Data Stewards 

  • Classify and protect data within systems.
  • Monitor access rights.
  • Coordinate with IT and district officials. 

Record Liaison

  • Verify records and eligibility for destruction
  • Verify public notification is accurate

Faculty & Staff 

  • Use data solely for authorized duties.
  • Use secure, district-approved systems.
  • Complete annual training. 

IT Department 

  • Maintain security systems.
  • Manage access control and breach response.
  • Implement encryption and retention systems.
  • Approve vendor contracts with data privacy terms. 

Vendors & Third Parties 

  • Must sign NISD Data Privacy Agreement.
  • Must report data breaches within 72 hours.
  • Prohibited from using or selling student data.


7. Data Management & Security 
NISD manages data by categorizing it, controlling access, and applying rules for its use and sharing. These measures are vital for safeguarding the privacy and security of all district data, especially your child's.

Data Classification

  • Restricted: This is the highest security classification and includes sensitive information such as Social Security Numbers (SSNs) and health assessments.
  • Confidential: This category includes data like grades and test scores.
  • Directory: This classification covers basic information such as name and grade. Individuals have the option to opt out of having their written information listed in the directory.

Inventory and Access

  • All systems and data elements are regularly identified, documented, and reviewed on an annual basis.
  • Access to data is role-based and strictly limited to authorized personnel.
  • Remote access is only permitted through a secure Virtual Private Network (VPN) and on approved devices.

Data Use and Dissemination

  • Data collection is restricted to purposes that are directly related to education or district operations.
  • Any dissemination of data must adhere to district policies and legal standards.
  • Confidential data must be encrypted or password-protected when it is transmitted.
     

8. NISD Record Retention Guidelines
NISD adheres to TSLAC retention schedules for all records, both physical and digital, ensuring secure storage. Records that have passed their retention period are shredded or disposed of using district-approved methods. It is important to note that any scheduled destruction is suspended if a litigation hold is in place.

Email Retention Policies

  • Standard Retention: All staff and student email accounts are subject to a standard 10-year retention period.
  • Retired Staff: Email accounts for retired staff members are retained for 2 years.
  • Former Staff (Non-Retired): Email accounts for staff members who have left the district (but not retired) are retained for 5 years.
  • Graduated Students: Email accounts for graduated students are retained for 2 years.
  • Transfer Students:
    1. Email Accounts  fro transfer students are retained for 2 years
    2. Digital Academic Records are retained for 5 years
       

 9. Storage Practices 
NISD utilizes various storage methods, including cloud and shared drives for online storage, and physical record boxes for long-term storage, with specific guidelines for campus record keeping.

Online Storage 

  • Cloud storage
  • On Premise (Campus and department share drive and/or Security video storage)

Long-term storage 

  • Standard record storage boxes labeled clearly by series and year.
  • Use the NISD Records system to coordinate pick up with the storage location.
  • Campus keep specific records on site for 2 years before requesting permanent storage
     

10. Training and Awareness 

  • All staff are required to complete annual mandatory training on cybersecurity
  • Targeted training to data stewards and users are completed at onboarding and annual training within the SIS and other key departments
  • Parent resources are provided on the district website. 
     

11. Monitoring and Review 
Technology Services Internet Safety Committee Changes are distributed via email with Data Stewards and Cabinet level leadership. 

12. Acknowledgment 
All employees, students, vendors, and volunteers are required to acknowledge the handbook and sign an Acceptable Use Policy (AUP) form annually. This acknowledgement is completed through the handbook.

13. Key Data Privacy Topics for Parents 
Student data access information is available on the Student Data Privacy Consortium website and at nisd.tech/district/technology

Updated