Top-level IT administrators across all three campuses (CU Boulder, UCCS, and CU Denver) all agreed that data in Canvas is well safeguarded. They referenced the provisions set by FERPA, which place certain protections on student data, as well as the policies and procedures within their departments. It should be noted that there is not a uniform data-protection policy across all three referenced campuses. Each IT department goes about protective measures and access-permissions in slightly-different ways, though they are all fairly similar. A lot of the discrepancies (for example, CU Denver has student employees with nearly the same information-access as top-level administrators) are based on the size of the universities, the volume of service requests received, and overall ability to quickly and efficiently provide service to users.
CU LMS Privacy Survey Data Visualizations 