So, I wrote an email with complains about security and privacy to my university, I still don't send it, because I am wondering if my voice will be heard, should I send it and see whats up, or should I make some kind of open letter?
Here are some of the problems and topics I bring up:
- Multiple sites are not HTTPS
- The passwords to access your student data can't be more than 10 characters
- There are no 2FA options
- Most sites have bad accessibility and their mobile design is lacking
- Most teachers just share your grades and other data publicly on Google Classroom, Moodle or WhatsApp groups
@joeligj12 You should email them first. Mostly people drag their feet because the system has worked till now and they see no reason to change. Nothing bad has happened yet to scare them into action. Talk to them directly and who knows they might be more receptive than you imagine.
@thumb @joeligj12 This seems to be a global problem. I don't think any school in the world has their shit together. It might be worthwhile to complain to #UNESCO, if the school operates in the area of UNESCO's purview. You should complain to the school as well, but I wouldn't have high expectations.
@joeligj12 @thumb if the school is in the EU, it would probably be easy to find #GDPR breaches, in which case you could involve the data protection office.
@resist1984 @thumb Lol, its from Mexico, however, I can probably make some bigger authority pay attention to these concerns