Policies

University-wide Policies

• Information Technology Security Program
• Privacy Statement
• Collection of Personal Data from Students and Customers Administrative Policy Statement
• Retention of University Records Administrative Policy Statement
• Use of Electronic Mail Administrative Policy Statement
• ​Data Governance Administrative Policy Statement

University-wide Standards, Procedures and Guidelines

• Data Governance
• Systemwide Baseline Security Standards
• Highly-Confidential & Highly Critical System Information Security Standard
• Standards for Security Controls in Purchasing
  • Security Guidance for Software as a Service (SaaS)
• Standards for Data Classification and System Security Categorization 
  • Data Classification
  • Adverse Impact
• Standards for Individuals with Privileged Access 
• Systemwide Data Exposure Response Process
• Student Data Use Guidelines
• Employee Data Use Guidelines
• Risk Acceptance process
• Request to Access Electronic Communications of Others
• EU General Data Protection Regulation Compliance