FERPA Compliance

FERPA Compliance

Our FERPA compliance ensures that organizations can deploy solutions aligned with their governance requirements.

FERPA Compliance

We’re Committed to Privacy and Data Security

YuJa Inc. is committed to upholding the highest standards of privacy and data security and ensuring that all our services comply with the Family Educational Rights and Privacy Act (FERPA).

Rights Granted

FERPA Grants Students Several Rights

FERPA is a federal law that protects the privacy of student education records. It grants students the right to:
  • Access their education records.
  • Request the amendment of records they believe to be inaccurate or misleading.
  • Have some control over the disclosure of information from their records.
Compliance
YuJa’s Commitment to FERPA
YuJa has implemented comprehensive measures to ensure our platforms adhere to FERPA regulations. Here’s how YuJa supports FERPA compliance:
Robust Security Measures
  • Regular vulnerability scans and penetration tests
  • 256-bit SSL encryption for data transmission
  • At-rest data encryption and industry-standard hashing
Privacy Protection
  • No disclosure, release, or sale of customer data to external entities
  • Compliance with all FERPA requirements for student data
  • Up-to-date compliance with state-level privacy policies
Flexible Integration Options
  • Standalone mode with secure user creation and management
  • LMS integration with major platforms (Blackboard, Canvas, D2L Brightspace, etc.)
  • Single Sign-On (SSO) options for direct, secure access
Data Management
  • YuJa acts as a “school official” under FERPA
  • We only collect and use student PII as needed to provide and improve our services
  • Customer content can be deleted at any time by the institution
Transparency and Compliance
  • Regular independent assessments of our privacy practices
  • Section 508 VPAT review for accessibility compliance
  • Comprehensive legal and compliance coverage
FERPA Rights
Exercise FERPA Rights

Parents or eligible students should contact their educational institution directly to access, review, refuse further collection, or request deletion of student PII. YuJa will cooperate with institutions to fulfill these requests.

FAQs

Frequently Asked Questions Related to FERPA Compliance

  • How does YuJa receive PII from education records?

    As a service provider to educational institutions, our company is considered a “school official” under FERPA. We may receive PII through contractual agreements with schools because we’re performing a service that furthers a “legitimate educational interest.”

  • What responsibilities do we have regarding student data?

    We must maintain student PII on behalf of, and at the direction of, the educational institution. We cannot use student PII for purposes other than those permitted by FERPA and our agreements with schools.

  • Can we use student data for marketing or advertising?

    No, we cannot sell student PII or use it for interest-based advertising. YuJa Inc. does not disclose, release, or sell any customer data to external entities. With specific regard to FERPA, we comply with all requirements regarding the maintenance and disclosure of student data.

  • What if a parent or student requests access to their data from us directly?

    Parents or eligible students must contact their educational institution to request access to, review, or delete student PII. If needed, we can assist the institution in fulfilling these requests.

  • How can we help educational institutions comply with FERPA?

    We can provide secure data storage, encryption, access controls, and tools that allow institutions to manage and protect student data. We also offer clear policies on data use and deletion.

Join the Hundreds of Organizations Deploying High-Impact Solutions