Privacy Policy

This Privacy Policy and Terms of Use sets forth the policies of the Bank Street College of Education and the School for Children (collectively referred to as “Bank Street”) with respect to non-public personal information you provide to us through this Web site.  By using our site, you consent to the terms and conditions of this Privacy Policy and Terms of Use.

  • Bank Street College Web Site Privacy Policy and Terms of Use

    1. Our Policy

    Personal information refers to information that allows us to identify you, such as your name, address, ZIP code, telephone number, organization name, e-mail address, etc. We recognize the value of your privacy and appreciate concerns you may have about information you provide to us online and how we treat that information.

    2. Personal Information Collected

    We maintain this Web site for informational purposes and in order to facilitate your interaction with Bank Street.  We only collect personally identifiable data when voluntarily and knowingly submitted by a visitor. For example, you may need to provide us with your personal information if you choose to complete online forms, applications, and surveys on the site, or if you communicate with us through e-mail.

    3. Use of Information

    We do not disclose any of your personal information to anyone, other than to our affiliates, except as permitted by law, and to certain service providers, such as third-party Web site hosts. We will only release information about you if you direct us to do so, if compelled to do so by law or in connection with a legitimate request for information from a government or self-regulatory organization.  We may also disclose information that you provide to us to companies that perform marketing services on our behalf. If such a disclosure is made, we will require such third parties to treat your private information with confidentiality.

    4. Non-Personal Information Collected.

    Visitors to our Site should be aware that certain non-personal information and data may be automatically collected by our Site. By tracking user trends and patterns of how people search, we can better understand our user base. This helps us deliver better and more personalized services, improve the content and administration of our Site, facilitate use of our Site by visitors, and diagnose problems with our server.

    5. Sharing Aggregating Data

    We may share aggregate, statistical, and other non-personal information with certain other third parties with which we have a relationship. For example, we may share aggregate information or statistics obtained from the use of “cookies” or information you provide us as described above, which does not identify you personally, such as user volume and demographics, click-stream patterns, and the domain name of the site from which visitors are connecting.

    6. Security

    We are concerned with the safety and security of your sessions on our Web site, the information you provide us online, and any transactions you conduct with us online. We protect your voluntarily submitted personal information through a variety of security measures including secure servers, firewalls, and encryption.

    7. Use of the Online Directories  

    These password-protected directories are for official school, parent, and alumni use and also for individual communication of a personal nature between members listed herein. Use of this directory for any other purpose, including, but not limited to, reproducing and storing in a retrieval system by any means, electronic or mechanical, photocopying, or using the addresses (electronic or otherwise) or other information in these directories for any commercial, political, or advocacy mailing is strictly prohibited and is in direct violation of copyright and constitutes misappropriation of corporate property. Such unauthorized use may also violate the rights of privacy and/or publicity of individuals listed herein and may constitute interference with contractual relationships related to these publications.

    8. Hyperlinks

    This website may contain hyperlinks to other sites. Websites linking to and from this website may have different privacy practices from Bank Street.

    9. Intellectual Property and Proprietary Rights

    The Site is protected by one or more copyrights, patents, database rights, trademarks, service marks and/or other intellectual property and proprietary rights that are owned by Bank Street, its affiliates and/or third parties.

    10. Children’s Online Privacy Protection Act.

    (Although The Children’s Online Privacy Protection Act of 1998 (“COPPA”) may not apply to our Site, it is our policy to . . . )  We comply with the Children’s Online Privacy Protection Act of 1998 (“COPPA”). COPPA requires that web site operators never knowingly request personally identifiable information from anyone under the age of 13 without requesting verifiable parental consent. In accordance with COPPA, we do not knowingly collect any personally identifiable information from children under the age of 13.

    11.  Questions About Our Policies

    If you have any questions about this Privacy Policy and Terms of Use or your dealings with the site, please feel free to contact us at web@bankstreet.edu.

  • Digital Millennium Copyright Act Notice

    In conformity with the Digital Millennium Copyright Act (DMCA), Bank Street has instituted a process for responding to notices of alleged copyright infringement. If you believe some material on a site owned or controlled by Bank Street is infringing your copyright, please send a notice to our DMCA agent (whose contact information is below) with the following information:

    1. A description of the infringing material;
    2. The location on our site(s) where the material is displayed, so that we can locate it (e.g., a URL);
    3. A statement that you are authorized to act on behalf of the owner of the copyright that you allege is being infringed, whether it is you or someone else;
    4. Your contact information, including address, telephone number, and e-mail address;
    5. A statement by you that you have a good faith belief that the material identified is not authorized by the copyright owner, its agent, or applicable laws to be on our site, and that the information you have provided in your notice is accurate.

    Please send this information to web@bankstreet.edu.

    I am text block. Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

    I am text block. Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

  • Data Security & Privacy (Children's Programs)
    Bank Street is committed to maintaining the privacy and security of student and teacher data and will follow all applicable laws and regulations for the collection, storage, and handling of this data as outlined in the requirements of Education Law Section 2-d (Ed Law 2-d).

    1. Education Law 2-d

    Education Law 2-d (Ed Law 2-d) is a statutory and regulatory framework developed to protect sensitive data related to New York’s P-12 students, teachers, and principals. The law was established in 2014 to provide additional protections that exceeded the Family Educational Rights and Privacy Act (FERPA) requirements. Ed Law 2-d focuses specifically on the privacy and security of student personally identifiable information (PII) and annual professional performance review (APPR) data of teachers and principals, and how this data is shared with third-party providers. It places the obligation on the educational agency and third-party contractors to:
    • Create policies regarding the use and handling of sensitive information
    • Include data security and privacy requirements in contracts with third-party providers
    • Establish a process that can be followed in the event of a breach or unauthorized release of sensitive information
    • Provide training for staff who have access to sensitive information
    • Report and notify any breaches or unauthorized releases
    • Ensure parents know their rights regarding sensitive information (Parents’ Bill of Rights)

    2. Personally Identifiable Information

    Personally identifiable information (PII) is defined by the Family Educational Rights and Privacy Act (FERPA), as any information that might allow a student to be identified. PII can be information that identifies a student directly, such as a student’s name or school identification number, but it also includes information that can allow a student to be identified when put together with other information, such as a student’s date of birth, gender, grades, picture, parent’s name, social security number, financial information, address, birthdate, race, religion, or weight.

    De-identified data (e.g., data regarding students that uses random identifiers), aggregated data (e.g., data reported at the school district level) or anonymized data that could not be used to identify a particular student are not considered to be PII.

    3. Parents’ Bill of Rights

    The purpose of the Parents’ Bill of Rights is to provide information to parents (which also include legal guardians or persons in parental relation to a student, but generally not the parents of a student who is age eighteen or over) and eligible students about certain legal requirements that protect personally identifiable information pursuant to state and federal laws.

    Bank Street, in compliance with Ed Law 2-d, provides the following Parents’ Bill Rights:

    • A student’s personally identifiable information will not be sold or released for any commercial purpose.
    • Parents have the right to inspect and review the complete contents of their child’s education record.
    • Security protocols associated with confidentiality of personally identifiable information are currently in place with necessary safeguards to protect this data. These safeguards include, but are not limited to, data encryption, firewalls, system access controls, and password protections.
    • Staff and educational workers that handle personally identifiable information will receive training on applicable state and federal laws, policies, and safeguards associated with industry standards and best practices that protect personally identifiable information.
    • Parents have the right to submit complaints about possible breaches and unauthorized disclosures of personally identifiable information addressed. Complaints should be directed to Doug Knecht, Dean of Children’s Programs at dknecht@bankstreet.edu, or to NYSED by mail to: Chief Privacy Officer, New York State Education Department, 89 Washington Avenue, Albany, NY 12234; or by email to privacy@nysed.gov.

    4. Requirements

    • Publication: This policy shall be published on the Bank Street website.
    • Bank Street shall provide the data protection, as well as the protection of parent and eligible student’s right sand rights to challenge the accuracy of such data required by FERPA (20 USC §1232g).
    • Bank Street follows the National Institute for Standards and Technology (NIST) Cybersecurity Framework (CSF) in accordance with the Commissioner’s Regulations.
    • Every contract or other written agreement with a third-party contractor under which the third- party contractor will receive protected student data or teacher data shall include a data security and privacy plan that outlines how all state, federal, and local data security and privacy contract requirements will be implemented over the life of the
      contract, consistent with this policy.
    • Every use and disclosure of personally identifiable information, as defined by FERPA, shall be for the benefit of students and the educational agency. Examples of such benefit are provided in implementing regulations.
    • Bank Street shall not sell or disclose for marketing or commercial purposes any PII, or facilitate its use of disclosure by any other party for any marketing or commercial purpose, or permit another party to do so.
    • Bank Street shall take steps to minimize its collection, process, and transmission of Protected Data. Except as required by law, or in the case of enrollment data, the District shall not report to NYSED Juvenile Delinquency records, criminal records, medical health records, or student biometric information.
    • All contracts with vendors that have access to PII shall comply with NIST Cybersecurity Framework.