{"id":31258,"date":"2026-05-09T21:31:01","date_gmt":"2026-05-09T21:31:01","guid":{"rendered":"https:\/\/indiabulletinusa.com\/wordpress\/2026\/05\/09\/state-audit-reveals-oversight-flaws-in-nyc-schools-handling-of-technology-and-student-data\/"},"modified":"2026-05-09T21:31:01","modified_gmt":"2026-05-09T21:31:01","slug":"state-audit-reveals-oversight-flaws-in-nyc-schools-handling-of-technology-and-student-data","status":"publish","type":"post","link":"https:\/\/indiabulletinusa.com\/wordpress\/2026\/05\/09\/state-audit-reveals-oversight-flaws-in-nyc-schools-handling-of-technology-and-student-data\/","title":{"rendered":"State Audit Reveals Oversight Flaws in NYC Schools&#8217; Handling of Technology and Student Data"},"content":{"rendered":"<p><br \/>\n<\/p>\n<p><strong>New York City&#8217;s Schools Face Challenges in Data Security<\/strong><\/p>\n<p>A recent report from the New York State Comptroller\u2019s office highlights significant issues within the city\u2019s public school system regarding technology tracking and data security. The audit reveals that the schools struggle to monitor which technologies are in use, report data breaches promptly, and inform families when their children\u2019s data may have been compromised.<\/p>\n<p>Comptroller Thomas DiNapoli released this audit just before a large ransomware attack disrupted access to the online education platform, Canvas, affecting numerous educational institutions. Among those impacted were New York City schools, as well as Columbia, Rutgers, and Princeton Universities.<\/p>\n<p>In a statement, Schools Chancellor Kamar Samuels acknowledged two recent data privacy issues: one was a broader problem affecting several schools, believed to be linked to the Canvas attack, while the other was confined to a single campus where malware was discovered in a shared computer lab.<\/p>\n<p>The audit, which reviewed data from March 2020 to September 2025, found that the city\u2019s public schools\u2014serving around 900,000 students across 1,600 schools\u2014lack a complete list of applications used by each school. This gap means the district does not fully understand the risks related to the data it holds.<\/p>\n<p>Auditors examined 141 data breaches reported between January 2023 and February 2025 and noted that nearly half were not reported to the state in a timely manner, with some delays exceeding a year.<\/p>\n<p>Tina Kim, the deputy comptroller for state government accountability, stressed the importance of having a centralized inventory of applications. Without such a list, the district struggles to perform necessary risk assessments and implement adequate security measures for higher-risk applications.<\/p>\n<p>Moreover, the audit pointed out that the school district&#8217;s policies lacked clarity on data security and privacy and that related information was not easily accessible on its website. Alarmingly, about 25% of the district\u2019s 161,000 employees had not completed required data privacy training for 2024.<\/p>\n<p>Kim also noted the evolving threats of phishing attacks, pointing out that advancements in artificial intelligence make these attacks harder to identify, increasing the need for training.<\/p>\n<p>Although New York City Public Schools did not reply immediately to requests for comment, Deputy Chancellor of School Operations Kevin Moran stated that ensuring the protection of student data is a top priority for the department. He highlighted a new webpage dedicated to student privacy and a group formed over the past year that includes parents and school leaders to address these issues. While Moran disputed some aspects of the audit&#8217;s methodology, the department agreed to most recommendations, including establishing a comprehensive inventory of student information systems and creating a data classification policy.<\/p>\n<p>The comptroller\u2019s office plans to follow up in a year to assess the district&#8217;s progress in implementing these important recommendations.<\/p>\n\n","protected":false},"excerpt":{"rendered":"<p>New York City&#8217;s Schools Face Challenges in Data Security A recent report from the New York State Comptroller\u2019s office highlights significant issues within the city\u2019s public school system regarding technology tracking and data security. The audit reveals that the schools struggle to monitor which technologies are in use, report data breaches promptly, and inform families<\/p>\n","protected":false},"author":1,"featured_media":31259,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rank_math_lock_modified_date":false,"footnotes":""},"categories":[34],"tags":[],"class_list":{"0":"post-31258","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-technology"},"_links":{"self":[{"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/posts\/31258","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/comments?post=31258"}],"version-history":[{"count":0,"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/posts\/31258\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/media\/31259"}],"wp:attachment":[{"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/media?parent=31258"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/categories?post=31258"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/indiabulletinusa.com\/wordpress\/wp-json\/wp\/v2\/tags?post=31258"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}