Skip to main content

Oregon State Flag An official website of the State of Oregon »

Data Privacy and Security

Welcome to the Data Privacy and Security section of the "district" website.  ODE is committed to keeping education data secure and private, and assisting district and ESD employees to do the same.

You will find both data privacy, student data privacy and security information on this page and the other pages associated with this page.


ODE Policies

Transferring secure data to and from institutions is very important. The use of regular email is prohibited by ODE. Districts, schools, ESD's and ODE shall use the "Secure File Transfer" application. 

Best practice is to notify the specific individual prior to sending secure information. It's important that staff are prepared for how they will store the secure data prior to receiving it. 

National Institute of Standards and Technology

The National Institute of Standards and Technology (NIST) was founded in 1901 and is now part of the U.S. Department of Commerce. NIST is one of the nation's oldest physical science laboratories. Congress established the agency to remove a major challenge to U.S. industrial competitiveness at the time — a second-rate measurement infrastructure that lagged behind the capabilities of the United Kingdom, Germany and other economic rivals.

From the smart electric power grid and electronic health records to atomic clocks, advanced nanomaterials and computer chips, innumerable products and services rely in some way on technology, measurement and standards provided by the National Institute of Standards and Technology.

Today, NIST measurements support the smallest of technologies to the largest and most complex of human-made creations — from nanoscale devices so tiny that tens of thousands can fit on the end of a single human hair up to earthquake-resistant skyscrapers and global communication networks.

Department of Administrative Services, Enterprise Information Services

The goal of information security is to protect the confidentiality, integrity, and availability of information assets. ORS 182.122 (House Bill 3145, 2005 Legislative Session) designates DAS as the "single point of accountability" for information security at the state. 

In support of this mandate, the Cyber Security Services (CSS) is instituting a security strategy wherein DAS works collaboratively with state agencies to ensure the state's security posture is at an acceptable level. Information security management enables information to be shared while ensuring protection of that information and its associated technology assets.

Security General Guidance