The Times Australia
The Times World News

.

School posts on Facebook could threaten student privacy

  • Written by Joshua Rosenberg, Assistant Professor of STEM Education, University of Tennessee

Like many of us, schools in the United States are active on social media[1]. They use their accounts to share timely information, build community and highlight staff and students[2]. However, our research[3] has shown that schools’ social media activity may harm students’ privacy.

As a researcher who specializes in data science in education[4], I and my colleagues came to the topic of student privacy unintentionally. We were exploring how schools used social media during the early days of the COVID-19 pandemic[5], specifically March and April of 2020. In the course of this research, we noticed something surprising about how Facebook worked: We could view the posts of schools – including images of teachers and students – even when not logged in to our personal Facebook accounts.

The ability to access pages and pictures even when we were not logged in revealed that not only could schools’ posts be accessed by anyone, but they could also be systematically accessed using data mining methods[6], or new research methods that involve using computers and statistical techniques to discover patterns in large – often publicly accessible – datasets.

Since practically all U.S. schools report their websites to the National Center for Education Statistics[7], and many schools link to their Facebook pages from their websites, these posts could be accessed in a comprehensive manner. In other words, not only researchers but also advertisers and hackers could use data mining methods to access all of the posts by any school with a Facebook account. This comprehensive access allowed us to study phenomena like violations of students’ privacy at a massive scale.

Risks are present

The easy access to student photos that we encountered comes despite broader concerns[8] about individuals’ privacy on social media. Parents, for instance, have expressed concerns[9] about teachers posting about their children on social media.

School posts on Facebook could threaten student privacy Photos of students that schools post on Facebook can be easily accessed by corporations or law enforcement. ljubaphoto via iStock/Getty Images Plus[10]

Fortunately, our search of news coverage and academic publications did not reveal any harms that have come to students because their schools posted about them. However, there are a number of possible risks that identifiable posts of students could pose. For instance, would-be stalkers and bullies could use the postings to identify individual students.

Also, there are newer threats that students may face. For instance, the facial recognition company Clearview[11] collects internet data – and social media data – from across the World Wide Web. Clearview then sells access to this data to law enforcement agencies[12], who can upload photos of a potential suspect or person of interest to view a list of potential names of the individual depicted in the uploaded photo. Clearview already accesses identifiable photos[13] of minors in the U.S. from public posts on Facebook. It is possible that photos of students from schools’ Facebook pages could be accessed and used by companies such as Clearview.

Even though we are not aware of these things actually happening, that is not reason to not be concerned about it. At a time when our privacy is often threatened in surprising ways, as technology journalist Kara Swisher writes, “only the paranoid survive[14].” My fellow researchers and I think this cautious view – even a paranoid view – is particularly justified when it comes to students as minors who may not provide their explicit permission to be included within posts.

Millions of student photos available

In our study, we used federal data[15] and an analytical tool provided by Facebook[16] to access posts from schools and school districts. We use the term “schools” to refer to both schools and school districts in our study. From this collection of 17.9 million posts by around 16,000 schools from 2005 to 2020, we randomly selected – sampled – 100 and then coded these publicly accessible posts. We determined whether students were named in the post with their first and last name and whether their faces were clearly depicted in a photo. If both of these elements were present, we considered a student to be identified by name and school.

For example, a student in a Facebook post whose photo includes a name in the caption, such as Jane Doe, would be deemed identified.

example-fb-img Students’ identities can be easily obtained online via school postings on Facebook. CC BY-ND[17]

We determined that 9.3 million of the 17.9 million posts we analyzed contained images. Within those 9.3 million posts, we estimated that around 467,000 students were identified. In other words, we found nearly half a million students on schools’ publicly accessible Facebook pages who are pictured and identified by first and last name and the location of their school.

Assessing the risks

While many of us already post photos of ourselves, friends and family – and sometimes our children – on social media, the posts of schools are different in one important sense. As individuals, we can control who can see our posts. If we want to limit it to just friends and family, we can change our own privacy settings. But people do not necessarily control how schools share their posts and images, and all of the posts we analyzed were strictly publicly accessible. Anyone in the world can access them.

Even if one considers the potential harm of this situation to be minimal, there are small steps that schools can take that could make a notable difference in whether that potential is present at all:

1. Refrain from posting students’ full names

Not posting students’ full names would make it much more difficult for individual students to be targeted and for students’ data to be sold and linked with other data sources by companies.

2. Make school pages private

Making school pages private means that data mining approaches similar to our own would be much more difficult – if not impossible – to carry out. This single step would drastically minimize risks to students’ privacy.

3. Use opt-in media release policies

Opt-in media release policies require parents to explicitly agree to have photos of their child shared via communications and media platforms. These may be more informative to parents – especially if they mention that the communications and media platforms include social media – and more protective of students’ privacy than opt-out policies, which require parents to contact their child’s school if they do not want their child’s photo or information to be shared.

In sum, schools’ Facebook pages are different from our personal social media accounts, and posts on these pages may threaten the privacy of students. But using social media doesn’t have to be an either-or proposition for schools. That is to say, it doesn’t necessarily come down to a choice between using social media without considering privacy threats or not using social media at all. Rather, our research suggests that educators can and should take small steps to protect students’ privacy when posting from school accounts.

[Understand new developments in science, health and technology, each week. Subscribe to The Conversation’s science newsletter[18].]

References

  1. ^ active on social media (doi.org)
  2. ^ share timely information, build community and highlight staff and students (doi.org)
  3. ^ our research (educationaldatamining.org)
  4. ^ specializes in data science in education (scholar.google.com)
  5. ^ how schools used social media during the early days of the COVID-19 pandemic (doi.org)
  6. ^ data mining methods (doi.org)
  7. ^ National Center for Education Statistics (nces.ed.gov)
  8. ^ broader concerns (www.nytimes.com)
  9. ^ expressed concerns (ijoc.org)
  10. ^ ljubaphoto via iStock/Getty Images Plus (www.gettyimages.com)
  11. ^ Clearview (clearview.ai)
  12. ^ sells access to this data to law enforcement agencies (www.forbes.com)
  13. ^ accesses identifiable photos (www.nytimes.com)
  14. ^ only the paranoid survive (www.nytimes.com)
  15. ^ federal data (nces.ed.gov)
  16. ^ analytical tool provided by Facebook (www.crowdtangle.com)
  17. ^ CC BY-ND (creativecommons.org)
  18. ^ Subscribe to The Conversation’s science newsletter (theconversation.com)

Read more https://theconversation.com/school-posts-on-facebook-could-threaten-student-privacy-160248

Times Magazine

Building an AI-First Culture in Your Company

AI isn't just something to think about anymore - it's becoming part of how we live and work, whether we like it or not. At the office, it definitely helps us move faster. But here's the thing: just using tools like ChatGPT or plugging AI into your wo...

Data Management Isn't Just About Tech—Here’s Why It’s a Human Problem Too

Photo by Kevin Kuby Manuel O. Diaz Jr.We live in a world drowning in data. Every click, swipe, medical scan, and financial transaction generates information, so much that managing it all has become one of the biggest challenges of our digital age. Bu...

Headless CMS in Digital Twins and 3D Product Experiences

Image by freepik As the metaverse becomes more advanced and accessible, it's clear that multiple sectors will use digital twins and 3D product experiences to visualize, connect, and streamline efforts better. A digital twin is a virtual replica of ...

The Decline of Hyper-Casual: How Mid-Core Mobile Games Took Over in 2025

In recent years, the mobile gaming landscape has undergone a significant transformation, with mid-core mobile games emerging as the dominant force in app stores by 2025. This shift is underpinned by changing user habits and evolving monetization tr...

Understanding ITIL 4 and PRINCE2 Project Management Synergy

Key Highlights ITIL 4 focuses on IT service management, emphasising continual improvement and value creation through modern digital transformation approaches. PRINCE2 project management supports systematic planning and execution of projects wit...

What AI Adoption Means for the Future of Workplace Risk Management

Image by freepik As industrial operations become more complex and fast-paced, the risks faced by workers and employers alike continue to grow. Traditional safety models—reliant on manual oversight, reactive investigations, and standardised checklist...

The Times Features

What Is the Dreamtime? Understanding Aboriginal Creation Stories Through Art

Aboriginal culture is built on the deep and important meaning of Dreamtime, which links beliefs and history with the elements that make life. It’s not just myths; the Dreamtime i...

How Short-Term Lenders Offer Long-Lasting Benefits in Australia

In the world of personal and business finance, short-term lenders are often viewed as temporary fixes—quick solutions for urgent cash needs. However, in Australia, short-term len...

Why School Breaks Are the Perfect Time to Build Real Game Skills

School holidays provide uninterrupted time to focus on individual skill development Players often return sharper and more confident after structured break-time training Holid...

Why This Elegant Diamond Cut Is Becoming the First Choice for Modern Proposals

Personalised engagement styles are replacing one-size-fits-all traditions A rising diamond cut offers timeless elegance with a softer aesthetic Its flexible design wo...

Is sleeping a lot actually bad for your health? A sleep scientist explains

We’re constantly being reminded by news articles and social media posts that we should be getting more sleep. You probably don’t need to hear it again – not sleeping enough i...

Ricoh Launches IM C401F A4 Colour MFP to Boost Speed and Security in Hybrid Workplaces

Ricoh, a leading provider of smart workplace technology, today launched the RICOH IM C401F, an enterprise-grade A4 colour desktop multifunction printer (MFP) designed for Austral...