“If companies like PowerSchool practiced a privacy-first approach…only collecting and storing what they absolutely need to provide the services they promise, many data breaches would be far less harmful,” EFF’s @thorinklosowski.com told K12 Dive.
Comments
Log in with your Bluesky account to leave a comment
Yes, yes, yes. Many companies began hoovering up extra data as if they were VC Futurist investors imagining the unknown use cases that would surely emerge. And then some did it because that’s what the others were doing and didn’t think much about it.
One of the biggest issues though with data, is companies maintaining it are sometimes too cheap to purchase proven security programs for their data and do not update all computers to the latest versions of operating systems.
I mean a bunch of the biggest recent hacks for ransom recently were companies & contractors simply ignoring two-factor authentication for password resets. Cheapness and laziness set in. This is one of my nerdy CPE areas for a govt cert I have.
As a data scientist, I always want to get as much data as possible. I never thought about it in the light of the above. Yes, when less data is collected on a person, and only what is necessary, there is less data for hackers to retrieve.
I used this as a former teacher. Here's the information we collected about students: daily attendance/grades, seating chart, guardian contact information, student schedule, comments from teachers, & historical student information from years past - without transparent access to students or guardians.
Comments