15.2 Information Technology Security and Confidentiality

Printable Version

Effective Date:

9-17-96

Revision Date:

6-13-19

University Policy Statement

Information technology resources are provided by the University to its students, faculty, staff and administration in support of the University's mission and are deemed to be critical infrastructure of the University. Information technology resources include devices, technology infrastructure, systems and services provided or used by the University for carrying out its mission and business operations. Institutional data includes all data and communications required to support the operation of the University.  Access to the University’s information technology resources and institutional data is provided in support of the University’s mission.  Access is based on business-need with agreement to appropriately use the information resources and data with due adherence to requirements of confidentiality, privacy and security.

University Practice

University procedures and regulations are and shall be established which govern acceptable use of University information technology resources and institutional data under this policy. These procedures and regulations shall be reviewed periodically.

Responsibility for Implementation

The Chief Information Officer shall create regulations and procedures to cause the implementation of this policy.

Scope of Policy Coverage

This policy applies to all users of information technology resources and institutional data.

Authority for Creation and Revision


Minutes of the Board of Regents, September 17, 1996, para. .5143M. 
Minutes of the Board of Regents, November 30, 2004, para. .6345M.
Minutes of the Board of Regents, June 13, 2019


Last Review Date: June 2019


University Policy Statement

Information technology resources are provided by the University to its students, faculty, staff and administration in support of the University's mission and are deemed to be critical infrastructure of the University. Information technology resources include devices, technology infrastructure, systems and services provided or used by the University for carrying out its mission and business operations. Institutional data includes all data and communications required to support the operation of the University.  Access to the University’s information technology resources and institutional data is provided in support of the University’s mission.  Access is based on business-need with agreement to appropriately use the information resources and data with due adherence to requirements of confidentiality, privacy and security.

University Practice

University procedures and regulations are and shall be established which govern acceptable use of University information technology resources and institutional data under this policy. These procedures and regulations shall be reviewed periodically.

Responsibility for Implementation

The Chief Information Officer shall create regulations and procedures to cause the implementation of this policy.

Scope of Policy Coverage

This policy applies to all users of information technology resources and institutional data.