The Family Educational Rights and Privacy Act of 1974 (FERPA) is a federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education.
All faculty or staff members who obtain CU-SIS access must agree to and abide by the FERPA certification, reproduced here:
Student data originated and stored on university computer equipment through reports or through the sharing of data files is university property. I understand that by virtue of my employment at the University of Colorado, I may have access to records that contain individually identifiable student data. I understand it becomes my responsibility to maintain the rights of students particularly as outlined in the Family Educational Rights and Privacy Act of 1974 (FERPA). I understand I have the responsibility to maintain confidentiality. I will not exhibit or divulge the contents of any record or report to any person except in the conduct of my work assignment and in accordance with FERPA. I acknowledge that I fully understand that the intentional disclosure by me of this information to any unauthorized person, including another university employee, or the tampering of any data that resides on any data system, violates university policy and could constitute just cause for disciplinary action, including but not limited to suspension of access privileges, a letter of reprimand, employment termination and/or accountability in a court of law. I understand that security dictates that I do not allow anyone to know or use my password and should I discover that my password is known (whether used or not), I will immediately change my password. Furthermore, I understand that should it be learned that I allow another person to use my logon ID and password, all access to these systems granted as a registered user will be immediately terminated.