Part III of the Test Administration Manual provides guidance to districts on how to protect student confidentiality. In particular, districts should remember that SSIDs associated with student names or other personally identifiable student data must not be sent in an e-mail or fax, both of which are considered non-secure. To ensure student confidentiality, if student information is to be sent via e-mail or fax, include only the student's SSID, not the student's name. As a reminder, this security requirement applies to Test Impropriety Reports submitted to ODE; these reports should never include student names.
Tips on securely transmitting confidential student information are located at http://www.ode.state.or.us/search/page/?id=2444.