Student privacy experts with AI-enhanced privacy compliance monitoring technology continuously identify student privacy risks across your school district's entire web presence in hours, not months.
School districts face an impossible task. Manually reviewing thousands of web pages, PDFs, images, and data files for student privacy violations simply doesn't scale.
Student data appears everywhere: board meeting minutes, athletic rosters, honor rolls, IEP committee notes, and spreadsheets linked from staff pages. Traditional approaches can't keep up. SchoolScan can.
From URL to actionable report. AI-enhanced, policy-aware, and backed by expert review.
We spider your district's entire web presence, including HTML pages, PDFs, Word docs, databases, images, and spreadsheets.
AI-enhanced analysis examines unstructured content while statistical methods check tabular data for re-identification risk.
Findings are evaluated against your district's actual privacy policies, reducing false positives automatically.
Critical and high-severity findings are reviewed by our staff of privacy professionals who validate results and provide actionable remediation guidance.
Get an A–F compliance grade, prioritized findings queue, and exportable dashboards for stakeholders.
Everything you need to find, prioritize, and remediate student privacy risks at scale.
AI-enhanced reasoning for unstructured documents like HTML, PDF, and Word files, combined with statistical disclosure avoidance for spreadsheets and CSVs. Two methods, one comprehensive result.
Automatically discovers and parses your district's privacy policies to classify findings as compliant, conditional, or confirmed violations. No more false alarms on directory information.
Multi-criteria decision analysis weighs severity, volume, accessibility, population sensitivity, staleness, and more to produce institution-level A–F grades and domain scores.
Comprehensive coverage across direct PII, indirect re-identification, directory info mishandling, education records, metadata leakage, and vendor exposure.
A smart two-stage triage model routes only flagged content for deeper analysis. At only $1,200/month for continuous district-wide monitoring, versus tens of thousands for a one-time audit, or hundreds of thousands for a single breach.
Export compliance data to Power BI, generate prioritized review queues, and produce narrative reports ready for board presentations or federal auditors.
Critical findings don't just get flagged — they're reviewed by privacy professionals who validate results, reduce noise, and provide specific remediation guidance tailored to your district.
SchoolScan examines every document across six distinct security domains. Click any card to learn more.
Student names linked to non-directory records like grades, disciplinary actions, or health information.
Example: Board minutes listing "Jane Doe, suspended 3 days for disciplinary incident" published on the district website.
Critical SeverityCombinations of quasi-identifiers that can identify students without using their names.
Example: A report showing "Grade 4, Female, English Learner, Free Lunch" in a school with only one matching student.
Critical SeverityDirectory information published beyond the scope designated in the district's annual FERPA notice.
Example: Student phone numbers published in a school directory when the district only designated name and grade level.
High SeverityIEP/504 plans, grades, assessment data, and disciplinary records exposed on public-facing pages.
Example: A linked PDF containing IEP meeting notes with student names and disability classifications.
Critical SeverityPII embedded in document metadata, Open Graph tags, file properties, and hidden form fields.
Example: A PDF's author field containing "jdoe_IEP_review" or og:image tags revealing student photos.
Medium SeverityStudent data exposed through third-party EdTech platforms, SSO portals, and embedded widgets.
Example: A class roster visible through an improperly configured LMS embed on the school's public page.
High SeverityEvery scan produces an interactive compliance dashboard with grades, domain breakdowns, and a prioritized review queue.
Built and operated by privacy professionals for the unique compliance needs of K-12 education.
"SchoolScan found three FERPA exposures in our board minutes that we'd missed for over two years. The policy-aware adjudication saved us dozens of hours we would have spent chasing false positives."
"We used to spend months on manual audits. SchoolScan covered our entire web presence in under 3 hours and gave us a clear, prioritized action plan with letter grades by domain."
"The k-anonymity analysis on our published data files was eye-opening. We had no idea our enrollment reports could re-identify individual students."
At $1,200 per month per district, SchoolScan replaces manual audits that cost tens of thousands and delivers results in hours.
| Metric | Manual Audit | SchoolScan |
|---|---|---|
| Time to complete | 3–6 months | 2–4 hours |
| Annual cost per district | $15,000–$50,000 | $14,400/yr ($1,200/mo) |
| Pages covered | Sample only | 100% of pages |
| Metadata analysis | Rarely done | Automatic |
| Statistical re-ID risk | Never done | K-anonymity analysis |
| Policy context | Manual lookup | Auto-adjudicated |
| Repeat scans | Start over | Incremental (changed pages only) |
See how much you save with AI-enhanced compliance monitoring.