Super Duper Publications is strongly committed to the privacy of customers on our Website, and particularly the privacy of children.
If you have additional privacy or security questions or concerns after reading this information, please contact Super Duper Publications.
Congress has enacted a law called the Children’s Online Privacy Protection Act of 1998 (COPPA) which is designed to protect children’s privacy during use of the Internet. Super Duper Publications has implemented the following practices, which are consistent with the guidelines provided by the Federal Trade Commission to date. Super Duper Publications will continually monitor developments in this area and update our practices.
The Children’s Internet Protection Act (CIPA) is a federal law enacted by Congress in December 2000 to address concerns about access to offensive content over the Internet on school and library computers. CIPA imposes certain types of requirements on any school or library that receives funding support for Internet access or internal connections from the E-rate program – a program that makes certain technology more affordable for eligible schools and libraries. In early 2001, the Federal Communications Commission (FCC) issued rules implementing CIPA. Super Duper Publications’ HearBuilder Online is self contained and does not provide links to external resources or chat rooms. Moreover, HearBuilder Online does not contain any offensive or inappropriate matter. As a result, any school or clinic that uses HearBuilder Online will be fully compliant with CIPA.
The Family Educational Rights and Privacy Act (FERPA) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education. FERPA gives parents certain rights with respect to their children’s education records. These rights transfer to the student when he or she reaches the age of 18 or attends a school beyond the high school level.
Super Duper Publications shall maintain Student Information for and on behalf of Subscriber – in accordance with the Family Educational Rights and Privacy Act (“FERPA”), 20 U.S.C. § 1232g(a)(4)(A)(ii), 1232g(b)(1) -- for the purpose of providing HearBuilder Online Subscription services pursuant to this Subscription. Super Duper Publications may use the Student Information to conduct collection of metrics to track student progress and performance for teacher reporting activities, including, but not limited to, longitudinal studies, alignment studies, and norming studies for the benefit of Subscriber and/or for the collective benefit of multiple Subscribers, as permitted by FERPA. Personally identifiable information (“PII”) derived from Student Information provided to Super Duper Publications may be disclosed only to Super Duper Publications employees who have a legitimate educational interest in maintaining, organizing, or analyzing the data for uses authorized in this Subscription. PII derived from Student Information and maintained by Super Duper Publications shall not be further disclosed by Super Duper Publications, except as allowed by FERPA. Subscriber is responsible for any notices to parents required under FERPA and for providing parents/guardians the opportunity to inspect and challenge the contents of the student records in question. In the event of a potential data accuracy error, Super Duper Publications must be informed, in writing, and supplied any and all supplemental and supporting documents, materials and information within 7 days of the supposed data accuracy error occurring. Super Duper Publications will respond, in writing, with the findings about the potential error within 30 days of receipt of the accuracy error notification.
HearBuilder Online is fully compliant with FERPA. Specifically:
Super Duper is committed to helping organizations and individuals address compliance issues with the technical, physical, and security safeguards of the Health Insurance Portability and Accountability Act (HIPAA) of 1996 and the Health Information Technology (HIT) for Economic and Clinical Health (HITECH) Act. Our intention is to practice and ensure responsible and appropriate use and guardianship of all electronic personal health data. Our efforts in this area include safeguards such as all users must log-in with a username and password. Each user has limited access to data and unintended disclosure of information is prevented by logging out of the system when the computer sits idle for 20 minutes. However, the ultimate responsibility of complying with HIPAA in using our services and products is with the user/customer. Super Duper assumes no responsibility or liability for non-compliance or breach of HIPAA, HITECH or any other applicable law or statute through the fault of the customer or user.
As a License Administrator, when you first use HearBuilder Online, you will be provided with a password to access your account and prompted to change your password when you first log in to the system. Please keep your password confidential and do not share it with anyone else. You must use your password each time you log on to the HearBuilder Online Website.
Account administrators/teachers can easily modify the profiles of their students via the system’s web interface at any time. An account owner can request the deletion of his or her entire account’s data by Super Duper at any time. If services are terminated, by either party, for any reason, Super Duper Publications agrees to provide all data to the subscriber, permanently delete all data and provide written verification confirming permanent deletion. Otherwise, all student profile and performance data in an account is deleted automatically from the system 60 days after a subscription expiration date has lapsed.
Super Duper Publications shall take all necessary actions to ensure security and confidentiality of student and employee data. Super Duper Publications will take the following measures taken to protect and backup the data; where the data resides and is transmitted via; and who has access to the data: all data transfer between browser and server is encrypted via SSL. Sensitive data, such as passwords and certain demographic information, is stored encrypted in the database. All student profile information is stored separately from student performance data. Administrative accounts are locked out after repeated, failed login attempts. Applications and data are secured on separate, dedicated servers behind firewalls at the facilities of web hosting company, Rackspace (Credentials available upon request). Developer access to applications and data is restricted to secure VPN connections. Data is backed up in multiple ways, including nightly and hourly backups, occurring within the application and via system-level processes on the database servers.
If you have any questions about your privacy or security measures, please contact Super Duper Publications at 1-800-277-8737.