Student, Teacher Data Exposed Online at Princeton Review Site

##AUTHORSPLIT##<--->

Test preparation company The Princeton Review exposed personal information on tens of thousands of students for about seven weeks on its Web site. According to coverage in The New York Times, an unnamed Princeton competitor "stumbled on the files" while doing competitive research and contacted the newspaper, which informed the firm of the data breach. Princeton closed off access to that part of the Web site.

According to Princeton, the blunder apparently occurred when it switched Internet service providers.

The company has two divisions, one that offers test prep courses and tutoring and another that works with school districts to provide assessment, intervention, and professional development. It was the latter division whose data appears to have been exposed.

One set of files made public included information for about 34,000 students--80 percent of the total student population--in Sarasota County Schools in Florida. The data was used by teachers to create tests and track student progress and included names, school identification numbers, birth dates, gender, ethnicity, disability status, and results of the Florida Comprehensive Assessment Test. In some cases, the social security numbers were part of specific student records.

According to coverage in Sarasota-based HeraldTribune.com, school superintendent Lori White was informed about the exposure by a reporter covering the story and said the district would be "reviewing the contract [with the Princeton Review] and deciding whether they want to keep it." The district renewed the contract at $350,000 for the current school year.

Another set of 245 files contained information on about 74,000 students in Fairfax County Public Schools in Virginia. In that case, compromised files had facts about students in grades three through eight as part of a state Standards of Learning practice test program. Details included student ID, names, and birth dates. The files also contained data on 3,157 teachers, including domain login ID and names. That contract had ended for reasons unrelated to the breach.

According to a statement posted on the Fairfax district Web site, Princeton Review is finishing an investigation to determine how the breach occurred and preparing a letter of explanation and apology to the students whose information was exposed. The district said it would "notify parents of affected students and affected teachers via e-mail."

Get daily news from THE Journal's RSS News Feed


About the author: Dian Schaffhauser is a writer who covers technology and business for a number of publications. Contact her at [email protected].

Proposals for articles and tips for news stories, as well as questions and comments about this publication, should be submitted to David Nagel, executive editor, at [email protected].

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • Report Explores Teacher and Administrator Attitudes on K–12 AI Adoption

    K–12 administration software provider Frontline Education recently released a new research brief regarding the use of AI adoption in schools, according to a news release. “Insights into K–12 AI Adoption: Educator Perspectives and Pathways Forward” was developed from the results of the Frontline Research and Learning Institute’s annual survey of district leaders.

  • PowerBuddy for Data

    PowerSchool Releases AI-Powered Tools for Students, Admins

    PowerSchool recently announced the general availability of two new AI-powered education tools, one for students and one for education data managers.

  • abstract pattern of interlocking circuits, hexagons, and neural network shapes

    Anthropic Offers Cautious Support for New California AI Regulation Legislation

    Anthropic has announced its support for an amended version of the "Safe and Secure Innovation for Frontier Artificial Intelligence Models Act," California’s Senate Bill 1047 (SB 1047), because of revisions to the bill the company helped to influence — but not without some reservations.

  • person signing a bill at a desk with a faint glow around the document. A tablet and laptop are subtly visible in the background, with soft colors and minimal digital elements

    California Governor Signs Off on AI Content Safeguard Laws

    California Governor Gavin Newsom has officially signed a series of landmark artificial intelligence bills into law, signaling the state’s latest efforts to regulate the burgeoning technology, particularly in response to the misuse of sexually explicit deepfakes. The legislation is aimed at mitigating the risks posed by AI-generated content, as concerns grow over the technology's potential to manipulate images, videos, and voices in ways that could cause significant harm.