Thursday, September 16, 2010

Re: Google Apps in Schools

ZOHO is different, their api is on our site, we shell out only to their
applications. All student data, when they click on save, gets
immediately uploaded to our school site.=20

We've implemented SSL, we've disabled auto-signup so there are no drive
by accounts, it's invitation only and locked down, so all the data
remains private.

For our money invested, it was well worth it.

For the safety of our students and their data - priceless :)

Thanks,
*******=20

Joe Frost, MS CIS
Director of Technology & Operations
Department Chair Technology
http://www.phoenixchristian.org

=20

-----Original Message-----
From: Jason Johnson [mailto:jasonpj@yahoo.com]
Sent: Thursday, September 16, 2010 6:27 AM
To: ISED-L@LISTSERV.SYR.EDU
Subject: Re: Google Apps in Schools

I found this discussion very interesting because there is a bias
expressed against Google when their systems appear to have worked. The
person was identified and terminated. If anything this makes me trust
them more. Put this in stark contrast to FaceBook, who despite their
public professions have a CEO who has admitted (in writing) to accessing
data in the same way
(http://www.boingboing.net/2010/09/14/damning-zuckerberg-i.html).
=20
There are very few systems that make your data unreachable to internal
staff and very few companies that could not modify their terms of
service to do whatever they want with your data. Especially cloud based
services. To get that level of security requires an investment beyond
the reach and need of most schools. =20
You bring up Zoho as being different from Google but it has all the same
issues, though as a paid service you have a stronger legal foot to stand
on in disputes. From the Zoho terms of service:
=20
"We assure you that the contents of your user account will not be
disclosed to anyone and will not be accessible even to employees of Zoho
except in circumstances specifically mentioned in this Privacy Policy
Statement."
=20
That means someone has access to all of your data via Zoho (even if you
are using local storage and their API). It is likely multiple people,
in multiple countries (Just like google), and even if you deleted it now
it would remain in their possession, likely for weeks or months.
=20
This is not to diminish Zoho, Google, or any other cloud service. I
think they=20
offer much better security and privacy than most schools can offer
internally or even with the help of custom development and consulting,
but every system is vulnerable and they are most vulnerable to those who
administer them.
=20
_J
____________________________
Jason at jasonpj@yahoo.com

[ For info on ISED-L see https://www.gds.org/podium/default.aspx?t=3D128874 ]
Submissions to ISED-L are released under a creative commons, attribution, non-commercial, share-alike license.
RSS Feed, http://listserv.syr.edu/scripts/wa.exe?RSS&L=3DISED-L

Posted by the ISED-L listserv at