Section 53E-9-302 - State student data protection governance(1)(a) An education entity or a third-party contractor who collects, uses, stores, shares, or deletes student data shall protect student data as described in this part.(b) In accordance with Title 63G, Chapter 3, Utah Administrative Rulemaking Act, the state board shall make rules to administer this part, including student data protection standards for public education employees, student aides, and volunteers.(2) The state board shall oversee the preparation and maintenance of:(a) a statewide data governance plan; and(b) a state-level metadata dictionary.(3)(a) The state board shall establish a student data protection advisory group to oversee student data protection in the state.(b) The student data protection advisory group shall be composed of: (i) members from the Legislature;(ii) members from the state board;(iii) the state student data officer;(v) state board employees; and(vi) others who use student data at the local level.(c) The student data protection advisory group shall:(i) make recommendations to the state board regarding:(A) enacted or proposed legislation; and(B) state and local student data protection policies across the state;(ii) review and monitor the state student data governance plan; and(iii) perform other tasks related to student data protection as directed by the state board.(4)(a) The state board shall designate a state student data officer.(b) The state student data officer shall:(i) act as the primary point of contact for state student data protection administration in assisting the state board to administer this part;(ii) ensure compliance with student privacy laws throughout the public education system, including: (A) providing training and support to applicable state board and LEA employees; and(B) producing resource materials, model plans, and model forms for local student data protection governance, including a model student data collection notice;(iii) investigate complaints of alleged violations of this part;(iv) report violations of this part to:(B) an applicable education entity; and(C) the student data protection advisory group; and(v) act as a state level student data manager.(5) The state board shall designate:(a) at least one support manager to assist the state student data officer; and(b) a student data protection auditor to assist the state student data officer.(6) The state board shall establish a research review process for a request for data for the purpose of research or evaluation.Amended by Chapter 20, 2024 General Session ,§ 10, eff. 5/1/2024.Amended by Chapter 381, 2023 General Session ,§ 4, eff. 7/1/2023.Amended by Chapter 408, 2020 General Session ,§ 28, eff. 5/12/2020.Amended by Chapter 186, 2019 General Session ,§ 139, eff. 5/14/2019.Amended by Chapter 304, 2018 General Session ,§ 2, eff. 5/8/2018.Renumbered from § 53A-1-1403 by Chapter 1, 2018 General Session ,§ 220, eff. 1/24/2018.Amended by Chapter 181, 2017 General Session ,§ 22, eff. 5/9/2017.Added by Chapter 221, 2016 General Session ,§ 5, eff. 5/10/2016.