Security Co-op
ESC 14 Cybersecurity CO-OP
Texas School District AI Compliance Mandates 2026-2027
As we prepare for the 2026-2027 school year, there are several critical state mandates regarding Artificial Intelligence (AI) governance and cybersecurity that require your immediate attention. Under 1 TAC Chapter 219 and HB 3512, school districts must implement new leadership roles, ethical standards, and training protocols to remain compliant and eligible for state grant funding.
Action Required:
- Requirement A (State Monitored): School board members and Cybersecurity Coordinators must complete annual DIR-certified training. The first annual certification is due to the DIR by August 31, 2026.
- Requirement B (Locally Monitored): For the 2026-2027 school year, the district must ensure all general staff (using local government systems for >25% of their duties) are trained in AI literacy, specifically focusing on Accuracy (verifying outputs), PII Protection (prohibiting sensitive data in public AI), and Ethics.
- Please ensure your AI Risk Officer is appointed and your staff training plan for Requirement B is finalized before the start of the 2026-2027 term. Failure to verify this training can disqualify the district from receiving state grant funding.
-
- Appoint an AI Risk Officer: Districts must designate an official to oversee AI compliance, promote ethical procurement, and manage risk assessments.
- Adopt the State AI Code of Ethics: The board must formally adopt the 10-pillar state code, which emphasizes fairness, transparency, and accountability.
- Establish a Redress Mechanism: Per state law, a formal process must be in place for students, parents, and staff to appeal or seek redress for decisions influenced by AI.
-
Training is now divided into two distinct categories:
- Requirement A (State Monitored): School board members and Cybersecurity Coordinators must complete annual DIR-certified training. The first annual certification is due to the DIR by August 31, 2026.
- Requirement B (Locally Monitored): For the 2026-2027 school year, the district must ensure all general staff (using local government systems for >25% of their duties) are trained in AI literacy, specifically focusing on Accuracy (verifying outputs), PII Protection (prohibiting sensitive data in public AI), and Ethics.
-
Districts must exercise "Heightened Scrutiny" over AI systems that make "consequential decisions" regarding student discipline, HR hiring, or Special Education.
- Human-in-the-Loop: AI can never be the sole factor in these decisions. A human must review and approve all AI-generated recommendations to avoid due process or civil rights violations.
- Banned Technologies: The use of specific platforms, including DeepSeek, Qwen, and Kimi, is strictly prohibited.
- Public Notice: You must notify the public whenever they interact with an HSAI system or a public-facing bot.
-
Moving forward, all AI vendor contracts should include language mandating provider adherence to the Texas AI Code of Ethics. Additionally, HSAI vendors must implement the NIST AI Risk Management Framework to support district compliance.
-
- Statewide AI Awareness Training - DIR
- For a directory of DIR-certified training programs, please visit the DIR Resource Library.
- Mandatory Training FAQs
- Training Certification Verification Form
- AI Notification Templates & Resources
- Handout