{"id":5222,"date":"2016-08-16T14:08:54","date_gmt":"2016-08-16T19:08:54","guid":{"rendered":"https:\/\/www.mcneese.edu\/policy\/ie_policy\/confidentiality_of_and_access_to_student_records\/"},"modified":"2025-07-29T13:36:08","modified_gmt":"2025-07-29T18:36:08","slug":"confidentiality_of_and_access_to_student_records","status":"publish","type":"ie_policy","link":"https:\/\/www.mcneese.edu\/policy\/student-records-privacy-and-access-policy\/","title":{"rendered":"Student Records Privacy and Access Policy"},"content":{"rendered":"\n<h2 class=\"wp-block-heading display-3\">Purpose<\/h2>\n\n\n\n<p>In accordance with 20 U.S.C. \u00a7 1232g and 34 CFR Part 99, McNeese State University complies with the Family Educational Rights and Privacy Act (FERPA). This policy outlines McNeese State University\u2019s responsibilities and procedures related to the privacy, confidentiality, security, and access of student education records and establishes internal standards for ethical and authorized handling of student information.<\/p>\n\n\n\n<p>Questions regarding FERPA may be directed to the Office of the Registrar at <a href=\"mailto:registrar@mcneese.edu\" target=\"_blank\" rel=\"noreferrer noopener\"><span style=\"text-decoration: underline;\">registrar@mcneese.edu<\/span><\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Definitions<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Student Records (Education Records):<\/strong> Records that contain information directly related to a student and are maintained by the University or its agents. Excluded are:\n<ul class=\"wp-block-list\">\n<li>Sole possession notes not shared with others<\/li>\n\n\n\n<li>Employment records unrelated to student status<\/li>\n\n\n\n<li>Campus police records<\/li>\n\n\n\n<li>Medical treatment records<\/li>\n\n\n\n<li>Alumni records<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Directory Information:<\/strong> Publicly releasable data including name, address, phone number, email, date and place of birth, major, classification, enrollment status, photograph, activities and sports participation, athletic height\/weight, dates of attendance, degrees\/awards, and most recently attended institution.<\/li>\n\n\n\n<li><strong>Personally Identifiable Information (PII):<\/strong> Any information contained in a student\u2019s education record that can be used to identify the student, either directly or indirectly. This includes, but is not limited to, the student\u2019s name, names of family members, Social Security Number, student ID number, date and place of birth, mother\u2019s maiden name, or any combination of data that would allow a reasonable person in the University community to identify the student with reasonable certainty. PII encompasses both directory and non-directory information, though non-directory information may not be disclosed without the student\u2019s written consent except as permitted by law.<\/li>\n\n\n\n<li><strong>University Official:<\/strong> Any employee, contractor, board member, student worker, or volunteer acting on behalf of the University.<\/li>\n\n\n\n<li><strong>Legitimate Educational Interest:<\/strong> The need to access student records to fulfill a job responsibility or institutional function, such as instruction, advising, financial aid, or disciplinary processes.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Student Rights under FERPA<\/h2>\n\n\n\n<p>Students have the right to:<\/p>\n\n\n\n<ol start=\"1\" class=\"wp-block-list\">\n<li><strong>Inspect and Review Records:<\/strong> Students may request access to their records by submitting a written request to the University official responsible for the record. Access will be provided within 45 days.<\/li>\n\n\n\n<li><strong>Request Amendment of Records: <\/strong>If students believe their records are inaccurate, misleading, or violate their privacy rights, they may request an amendment. If denied, they have the right to a hearing. Additional information regarding the hearing procedures will be provided to the student when notified of the denial.<\/li>\n\n\n\n<li><strong>Consent to Disclosures: <\/strong>Personally identifiable information (PII) may not be disclosed without student consent except as permitted by law.<\/li>\n\n\n\n<li><strong>File Complaints: <\/strong>Students may file written complaints concerning alleged failures by the University to comply with the requirements of FERPA with the U.S. Department of Education at:<br>Family Policy Compliance Office<br>400 Maryland Avenue SW<br>Washington, DC 20202<\/li>\n\n\n\n<li><strong>Restrict Directory Information: <\/strong>Students may opt out of directory information disclosure by submitting a Request to Prevent Disclosure of Directory Information form to the Office of the Registrar.<\/li>\n<\/ol>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Disclosure of Student Information Without Consent<\/h2>\n\n\n\n<p>The University may release student information without consent under specific circumstances, including:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>To school officials with legitimate educational interests<\/li>\n\n\n\n<li>To officials at other institutions where the student seeks or intends to enroll<\/li>\n\n\n\n<li>In connection with financial aid<\/li>\n\n\n\n<li>To accrediting agencies and education authorities<\/li>\n\n\n\n<li>To comply with a judicial order or subpoena<\/li>\n\n\n\n<li>In health or safety emergencies<\/li>\n\n\n\n<li>To parents of dependent students (as defined by the Internal Revenue Service)<\/li>\n\n\n\n<li>For directory information (unless restricted)<\/li>\n\n\n\n<li>For certain disciplinary or legal proceedings<\/li>\n\n\n\n<li>To appropriate parties in connection with alcohol\/drug violations (if under 21 years of age)<\/li>\n<\/ul>\n\n\n\n<p>Records of such disclosures are maintained and made available to the student upon request.<\/p>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Responsibilities of University Officials<\/h2>\n\n\n\n<p>University employees must treat student records as confidential and access them only when a legitimate educational interest exists. The following actions are considered violations of University policy and may result in disciplinary action, legal liability, or revocation of access:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Accessing student records without legitimate educational interest<\/li>\n\n\n\n<li>Disclosing non-directory information without student consent or legal authorization<\/li>\n\n\n\n<li>Leaving confidential information in unsecured locations<\/li>\n\n\n\n<li>Discussing student information in public or inappropriate settings<\/li>\n\n\n\n<li>Sharing login credentials or leaving systems unlocked<\/li>\n\n\n\n<li>Using student-related information for personal gain<\/li>\n\n\n\n<li>Removing student records without authorization<\/li>\n\n\n\n<li>Uploading student records containing personally identifiable information (PII) to any artificial intelligence (AI) tool<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Access to Electronic Student Records<\/h2>\n\n\n\n<p>Electronic student records are housed in systems such as Banner, Degree Works, Workflow, BDM, Argos, and UC4. Access to student records is limited to individuals with a documented legitimate educational interest and must be approved by the appropriate data owner:<\/p>\n\n\n\n<figure id=\"table-BtA-LMoS41X1\" class=\"wp-block-table\"><table><thead><tr><th>Functional Area<\/th><th>Data Owner<\/th><\/tr><\/thead><tbody><tr><td>Admissions<\/td><td>Director of Admissions<\/td><\/tr><tr><td>Finance<\/td><td>Comptroller<\/td><\/tr><tr><td>Financial Aid<\/td><td>Director of Financial Aid and Scholarships<\/td><\/tr><tr><td>General<\/td><td>Director of University Computing Services<\/td><\/tr><tr><td>Human Resources<\/td><td>Director of Human Resources and Student Employment<\/td><\/tr><tr><td>Payroll<\/td><td>Payroll Accountant Supervisor 2<\/td><\/tr><tr><td>Student<\/td><td>Registrar<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p>It is the responsibility of the functional area data owners to determine the level of access to systems and student data based on individual employee responsibilities, job functions, and reporting requirements.<\/p>\n\n\n\n<h3 class=\"wp-block-heading display-4 heavy\">Procedure to Request Access to Student Records<\/h3>\n\n\n\n<ol start=\"1\" class=\"wp-block-list\">\n<li>Requestor completes the electronic <a href=\"https:\/\/msuapps.mcneese.edu\/msu_prod\/banner_request\/\" target=\"_blank\" rel=\"noreferrer noopener\"><span style=\"text-decoration: underline;\">Access Request Form<\/span><\/a>.<\/li>\n\n\n\n<li>Requestor obtains supervisor approval.<\/li>\n\n\n\n<li>Requestor submits the form to University Computing Services (UCS).<\/li>\n\n\n\n<li>UCS secures data owner authorization and processes the request.<\/li>\n<\/ol>\n\n\n\n<p>Supervisors are responsible for requesting revocation or modification of access upon role change, separation, or misuse.<\/p>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Security and Audit<\/h2>\n\n\n\n<p>University Computing Services conducts quarterly audits of user access to student systems. Data owners review access lists and authorize additions or removals as needed to maintain compliance and ensure data integrity.<\/p>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Communication<\/h2>\n\n\n\n<p>This policy is distributed via the University Policies webpage.<\/p>\n\n\n\n<h2 class=\"wp-block-heading display-3\">Related University Policies<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/www.mcneese.edu\/policy\/family-educational-rights-and-privacy-act-ferpa\/\" data-type=\"ie_policy\" data-id=\"5269\" target=\"_blank\" rel=\"noreferrer noopener\"><span style=\"text-decoration: underline;\">Family Educational Rights and Privacy Act (FERPA) Policy<\/span><\/a><\/li>\n<\/ul>\n","protected":false},"parent":0,"template":"","policy_types":[22],"class_list":["post-5222","ie_policy","type-ie_policy","status-publish","hentry","policy_types-students"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy\/5222","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy"}],"about":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/types\/ie_policy"}],"version-history":[{"count":3,"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy\/5222\/revisions"}],"predecessor-version":[{"id":16633,"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy\/5222\/revisions\/16633"}],"wp:attachment":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/media?parent=5222"}],"wp:term":[{"taxonomy":"policy_types","embeddable":true,"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/policy_types?post=5222"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}