Suche
Mein Konto
Safe learning: New certificate for data protection in schools announced!
With the DIRECTIONS project, the University of Kassel is developing data protection certification for school information systems.
Safe learning: New certificate for data protection in schools announced!
The DIRECTIONS research project at the University of Kassel has set itself the goal of providing orientation in the market for digital education solutions and at the same time strengthening the data protection of students. Under the direction of Prof. Dr. Gerrit Hornung developed a comprehensive catalog of criteria. This defines the data protection requirements that are placed on school information systems. The focus is on providers being able to demonstrate the responsible handling of sensitive information through a declaration of commitment. uni-kassel.de reports that all declarations of voluntary commitment are documented in a public register at www.sve.trusted-cloud.de, which is managed by Trusted Cloud e.V.
The project receives funding of 6.3 million euros from the Federal Ministry of Education and Research. The aim is to promote trust in digital learning environments and to create a safe digital learning environment. SBE network solutions GmbH was the first company to publish the commitment with the school server solution LogoDIDACT, and other providers such as n-21: Schools in Lower Saxony online e. V. and SMART Technologies (Germany) GmbH follow.
Planned certification and catalog of criteria
DIRECTIONS plans to introduce a formal certification process in accordance with Article 42 of the General Data Protection Regulation (GDPR) in summer 2025. Recognized seals of quality and data protection certification for school information systems are to be developed. Those involved come from different disciplines, including Dr. Maseberg and Dr. Karper from datenschutz cert GmbH. Partners from research and practice are also actively involved. The project is scheduled to last six years, from December 2021 to November 2027, with the aim of being market-ready by 2026. cii.aifb.kit.edu cites the determination of suitable certification subjects and the development of the necessary organizational structures for testing and awarding certificates as further goals.
A particular focus of the initiative is on the assessment and responsible handling of data in educational institutions. This topic is particularly complex because data flows in schools and daycare centers are different and a large number of actors are involved. For example, educators in daycare centers must document children's development and obtain parental consent when handing over information to primary schools. Recording this chronologically and making it legally secure is one of the challenges that the project addresses. datenschutz-praxis.de highlights that data processing must be carried out in accordance with data minimization principles and that all parties involved should be informed about the processing of their data.
DIRECTIONS' measures include the development of a catalog of criteria and the comprehensive communication of these requirements to all schools, school authorities and providers involved. The aim is to create the highest possible level of transparency and uniform standards in the handling of student data. The voluntary declaration is intended to promote trust and comparability among the various providers.