Privacy governance not included: analysis of third parties in learning management systems

IF 1.6 Q2 INFORMATION SCIENCE & LIBRARY SCIENCE Information and Learning Sciences Pub Date : 2023-09-26 DOI:10.1108/ils-04-2023-0033
Madelyn Rose Sanfilippo, Noah Apthorpe, Karoline Brehm, Yan Shvartzshnaider
{"title":"Privacy governance not included: analysis of third parties in learning management systems","authors":"Madelyn Rose Sanfilippo, Noah Apthorpe, Karoline Brehm, Yan Shvartzshnaider","doi":"10.1108/ils-04-2023-0033","DOIUrl":null,"url":null,"abstract":"Purpose This paper aims to address research gaps around third party data flows in education by investigating governance practices in higher education with respect to learning management system (LMS) ecosystems. The authors answer the following research questions: how are LMS and plugins/learning tools interoperability (LTI) governed at higher education institutions? Who is responsible for data governance activities around LMS? What is the current state of governance over LMS? What is the current state of governance over LMS plugins, LTI, etc.? What governance issues are unresolved in this domain? How are issues of privacy and governance regarding LMS and plugins/LTIs documented or communicated to the public and/or community members? Design/methodology/approach This study involved three components: (1) An online questionnaire about LMS, plugin and LTI governance practices from information technology professionals at seven universities in the USA ( n = 4) and Canada ( n = 3). The responses from these individuals helped us frame and design the interview schedule. (2) A review of public data from 112 universities about LMS plugin and LTI governance. Eighteen of these universities provide additional documentation, which we analyze in further depth. (3) A series of extensive interviews with 25 university data governance officers with responsibilities for LMS, plugin and/or LTI governance, representing 14 different universities. Findings The results indicate a portrait of fragmented and unobtrusive, unnoticed student information flows to third parties. From coordination problems on individual college campuses to disparate distributions of authority across campuses, as well as from significant data collection via individual LTIs to a shared problem of scope across many LTIs, the authors see that increased and intentional governance is needed to improve the state of student privacy and provide transparency in the complex environment around LMSs. Yet, the authors also see that there are logical paths forward based on successful governance and leveraging existing collaborative networks among data governance professionals in higher education. Originality/value Substantial prior work has examined issues of privacy in the education context, although little research has directly examined higher education institutions’ governance practices of LMS, plugin and LTI ecosystems. The tight integration of first and third-party tools in this ecosystem raises concerns that student data may be accessed and shared without sufficient transparency or oversight and in violation of established education privacy norms. However, these technologies and the university governance practices that could check inappropriate data handling remain under-scrutinized. This paper addresses this gap by investigating the governance practices of higher education institutions with respect to LMS ecosystems.","PeriodicalId":44588,"journal":{"name":"Information and Learning Sciences","volume":"36 1","pages":"0"},"PeriodicalIF":1.6000,"publicationDate":"2023-09-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information and Learning Sciences","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1108/ils-04-2023-0033","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"INFORMATION SCIENCE & LIBRARY SCIENCE","Score":null,"Total":0}
引用次数: 1

Abstract

Purpose This paper aims to address research gaps around third party data flows in education by investigating governance practices in higher education with respect to learning management system (LMS) ecosystems. The authors answer the following research questions: how are LMS and plugins/learning tools interoperability (LTI) governed at higher education institutions? Who is responsible for data governance activities around LMS? What is the current state of governance over LMS? What is the current state of governance over LMS plugins, LTI, etc.? What governance issues are unresolved in this domain? How are issues of privacy and governance regarding LMS and plugins/LTIs documented or communicated to the public and/or community members? Design/methodology/approach This study involved three components: (1) An online questionnaire about LMS, plugin and LTI governance practices from information technology professionals at seven universities in the USA ( n = 4) and Canada ( n = 3). The responses from these individuals helped us frame and design the interview schedule. (2) A review of public data from 112 universities about LMS plugin and LTI governance. Eighteen of these universities provide additional documentation, which we analyze in further depth. (3) A series of extensive interviews with 25 university data governance officers with responsibilities for LMS, plugin and/or LTI governance, representing 14 different universities. Findings The results indicate a portrait of fragmented and unobtrusive, unnoticed student information flows to third parties. From coordination problems on individual college campuses to disparate distributions of authority across campuses, as well as from significant data collection via individual LTIs to a shared problem of scope across many LTIs, the authors see that increased and intentional governance is needed to improve the state of student privacy and provide transparency in the complex environment around LMSs. Yet, the authors also see that there are logical paths forward based on successful governance and leveraging existing collaborative networks among data governance professionals in higher education. Originality/value Substantial prior work has examined issues of privacy in the education context, although little research has directly examined higher education institutions’ governance practices of LMS, plugin and LTI ecosystems. The tight integration of first and third-party tools in this ecosystem raises concerns that student data may be accessed and shared without sufficient transparency or oversight and in violation of established education privacy norms. However, these technologies and the university governance practices that could check inappropriate data handling remain under-scrutinized. This paper addresses this gap by investigating the governance practices of higher education institutions with respect to LMS ecosystems.
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
不包括隐私治理:学习管理系统中第三方的分析
本文旨在通过调查高等教育中与学习管理系统(LMS)生态系统相关的治理实践,解决教育中第三方数据流的研究差距。作者回答了以下研究问题:高等教育机构如何管理LMS和插件/学习工具互操作性(LTI) ?谁负责LMS周围的数据治理活动?LMS的当前治理状态是什么?LMS插件、LTI等的当前治理状态如何?在这个领域中有哪些治理问题尚未解决?关于LMS和插件/ lti的隐私和治理问题是如何记录或传达给公众和/或社区成员的?本研究包括三个组成部分:(1)对美国(n = 4)和加拿大(n = 3)七所大学的信息技术专业人员进行了一份关于LMS、插件和LTI治理实践的在线问卷调查。这些人的回答帮助我们制定和设计了访谈时间表。(2) 112所高校LMS插件与LTI治理的公共数据综述。其中18所大学提供了额外的文件,我们将对其进行更深入的分析。(3)对代表14所不同大学的25名负责LMS、插件和/或LTI治理的大学数据治理官员进行了一系列广泛的访谈。研究结果表明,学生的信息流向第三方是碎片化的、不引人注目的、不被注意的。从单个大学校园的协调问题到跨校园的不同权力分配,以及从通过单个lti收集重要数据到跨许多lti范围的共同问题,作者认为需要增加和有意的治理,以改善学生隐私状况,并在lms周围的复杂环境中提供透明度。然而,作者还看到,基于成功的治理和利用高等教育中数据治理专业人员之间现有的协作网络,存在前进的逻辑路径。尽管很少有研究直接研究高等教育机构对LMS、插件和LTI生态系统的治理实践,但大量的先前工作已经研究了教育背景下的隐私问题。在这个生态系统中,第一方和第三方工具的紧密集成引发了人们的担忧,即学生数据可能在没有足够透明度或监督的情况下被访问和共享,并且违反了既定的教育隐私规范。然而,这些技术和大学治理实践可以检查不适当的数据处理仍然没有得到仔细审查。本文通过调查高等教育机构在LMS生态系统方面的治理实践来解决这一差距。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 去求助
来源期刊
Information and Learning Sciences
Information and Learning Sciences INFORMATION SCIENCE & LIBRARY SCIENCE-
CiteScore
9.50
自引率
2.90%
发文量
30
期刊介绍: Information and Learning Sciences advances inter-disciplinary research that explores scholarly intersections shared within 2 key fields: information science and the learning sciences / education sciences. The journal provides a publication venue for work that strengthens our scholarly understanding of human inquiry and learning phenomena, especially as they relate to design and uses of information and e-learning systems innovations.
期刊最新文献
A critical (theory) data literacy: tales from the field Toward a new framework for teaching algorithmic literacy Promoting students’ informal inferential reasoning through arts-integrated data literacy education The data awareness framework as part of data literacies in K-12 education Learning experience network analysis for design-based research
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1