PowerSchool Data Breach Incident

A data breach occurs when unauthorized individuals gain access to confidential information stored on systems or networks. This can involve sensitive personal data and may lead to identity theft, financial fraud, or other risks for affected individuals. Learn more: What is a Data Breach?

PowerSchool is a widely used Student Information System (SIS) that helps schools manage various aspects of student data, including enrollment, attendance, grades, and schedules. At Burbank School District 111, PowerSchool provides a secure platform for parents, students, and staff to access important academic and administrative information. It supports communication and data tracking to ensure effective educational services.

Learn more: PowerSchool at Burbank School District 111

For students:

• Names (first, middle, last)

• Birthdates

• Addresses

• Phone numbers

• Gender

• Ethnicity/race

• Language

• School name and state

• Student ID numbers (school and state)

• Guardian alert and names

• Enrollment information

• Lunch waiver information

• PowerSchool login ID

For staff:

• Names (first and last)

• Email addresses

• School abbreviation codes

• Teacher numbers (Staff IEIN stored here)

• PowerSchool login ID (not active due to SSO with Microsoft 365)

Note: No social security numbers, passwords, photos, financial information, or staff home addresses were involved in the breach. PowerSchool’s systems for student and staff photos and financial data are managed separately and were not accessed.

We are actively collaborating with PowerSchool to assess the extent of the breach and its impact on our district. Our Technology department is also reviewing our internal security measures to ensure the continued protection of our students' and staff's personal information.

Burbank School District 111 is committed to safeguarding student and staff data and works to ensure compliance with data privacy laws such as:

• The Family Educational Rights and Privacy Act (FERPA) (Learn more about FERPA)

• The Student Online Personal Information Protection Act (SOPIPA) (Learn more about SOPIPA)

We regularly review and update our data security measures. All contracts with third-party vendors include provisions to protect data confidentiality and comply with state and federal privacy laws. Additionally:

• District staff receive training on data privacy and security best practices.

• We have stringent agreements with all third-party vendors to ensure student data remains secure and is used only for authorized educational purposes.

• PowerSchool is offering two years of complimentary identity protection and credit monitoring through Experian. 
• For individuals 18 and over
•  
  • Use activation code CTYU949PRK. 
  • Engagement number: B138812

• For individuals under 18:
  
  • Use activation code CEBP456TRK
  • Engagement number: B138813
• Enrollment deadline: May 30, 2025.
• Enroll through the Experian IdentityWorks website.

Recommended Actions:

• Monitor financial statements for suspicious activity.
• Place a fraud alert or security freeze on credit reports for enhanced protection.
• PowerSchool will never contact you by phone or email to request personal information.
• For assistance, contact Experian’s customer care team at 833-918-9464.