New Mexico Administrative Code
Title 6 - PRIMARY AND SECONDARY EDUCATION
Chapter 19 - PUBLIC SCHOOL ACCOUNTABILITY
Part 5 - STUDENT IDENTIFICATION SYSTEM AND ACCOUNTABILITY DATA SYSTEM: SECURITY MEASURES
Section 6.19.5.8 - SECURITY MEASURES: LOCAL SCHOOL DISTRICT AND CHARTER SCHOOL REQUIREMENTS

Universal Citation: 6 NM Admin Code 6.19.5.8

Current through Register Vol. 35, No. 18, September 24, 2024

A. Each local school board and each charter school must develop and implement a student information system security policy that addresses the following minimum components:

(1) establishes requirements for the issuance of passwords to ensure system integrity (for example, the policy may specify the number of characters to be used, require that at least three (3) different types of characters be used, and preclude the use of spaces);

(2) requires the use of password protected screensavers with time-out;

(3) prohibits sharing of passwords;

(4) establishes an internal system for tracking and identifying individuals with access to the student identification system, the type of access authorized, and the date, time, and location of any access; and

(5) ensures that access is immediately terminated upon cessation of an individual's authority for access.

B. Each local school board and each charter school shall regularly review and, as appropriate, revise its student information system security policy.

C. The local school district or charter school may not use the student identification number on student identification cards or display or utilize the student identification number within any other identification system that is not part of the student identification system.

D. Local school district superintendents and charter school administrators shall inform employees to whom access to the student identification system is approved of the requirements of FERPA and the implementing regulations to FERPA. If the local school district superintendent or charter school administrator has reason to believe that the requirements of FERPA have not been adhered to by an employee having access to the student identification system, the superintendent or administrator shall immediately cancel the individual's access authorization.

E. Breach of security: The local superintendent or administrator of a charter school shall immediately notify the PED's ADS coordinator if the superintendent or administrator has reason to believe that a breach of security has occurred with respect to the student identification system.

Disclaimer: These regulations may not be the most recent version. New Mexico may have more current or accurate information. We make no warranties or guarantees about the accuracy, completeness, or adequacy of the information contained on this site or the information linked to on the state site. Please check official sources.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.