CIPA Guidelines:
Applicants must certify compliance with the Children’s Internet Protection Act (CIPA) to be eligible for Schools and Libraries Erate program discounts on Category One internet access and all Category Two services – internal connections, managed internal broadband services, and basic maintenance of internal connections. The relevant authority with responsibility for administration of the eligible school or library (the Administrative Authority) must certify that the school or library is enforcing an internet safety policy that includes measures to block or filter internet access for both minors and adults to certain visual depictions.
In general, school and library authorities must certify that (one of the following):
Applicants must certify compliance with the Children’s Internet Protection Act (CIPA) to be eligible for Schools and Libraries Erate program discounts on Category One internet access and all Category Two services – internal connections, managed internal broadband services, and basic maintenance of internal connections. The relevant authority with responsibility for administration of the eligible school or library (the Administrative Authority) must certify that the school or library is enforcing an internet safety policy that includes measures to block or filter internet access for both minors and adults to certain visual depictions.
In general, school and library authorities must certify that (one of the following):
- They have complied with the requirements of CIPA, or
- They are undertaking actions, including any necessary procurement procedures, to comply with the requirements of CIPA, or
- CIPA does not apply because they are receiving discounts for telecommunications services only.
STAYING CIPA COMPLIANT:
WHAT YOU NEED TO KNOW
CIPA compliance isn’t just a checkbox—it’s a federal requirement with serious consequences if neglected.
To remain eligible for ERate funding, schools and libraries must maintain active and ongoing compliance with the Children’s Internet Protection Act (CIPA). This includes:
- Board-Approved Internet Safety Policy
Your plan must be formally adopted by your governing board and made available upon request. - Content Filtering & Reporting
You must be able to generate reports demonstrating how inappropriate websites are being actively blocked. Filtering systems must be in place and functioning at all times. - Ongoing Readiness – No Deadline
There is no set "due date" for CIPA compliance--you must always be ready to provide documentation. - Risk of Clawback
Failure to comply can result in the loss of current and past ERate funding. In some cases, USAC can recover funds going back up to 10 years.
HELPFUL RESOURCES:
