Accessibility Navigation:

Topic “Chapter 300 Research, Intellectual Property, and Information Technology”

Regulation Regarding Third Party Data Subject to Contractual Access Restrictions

Policy #: 
311
9
I. Executive Summary and Purpose

This Regulation summarizes UNC Charlotte’s comprehensive security program (the “Program”) for handling electronic data that is (a) received from third parties and (b) subject to contractual access restrictions. Such restrictions generally require the execution of agreements under such names as Data Sharing Agreement,Restricted Use Agreement, Restricted Use Data Agreement and License, Restricted Data Use Agreement,Limited Data Set Use Agreement, etc.

Regulations on the Use of Social Security Numbers

Policy #: 
311
8

With the implementation of the Banner system, UNC Charlotte will start the migration from using social security numbers (SSNs) as primary personal identification numbers for students and employees to an alternate ID.

Even after the Banner system is in effect, there will still be legitimate uses of the SSN on campus. Therefore,University employees who have access to SSNs must comply with the following regulations both prior to and after the Banner system is implemented:

Regulations on Information Systems Security

Policy #: 
311
7

It is the policy of the University of North Carolina at Charlotte to safeguard all classified information as required in the National Industrial Security Program Operating Manual (NISPOM). As such, the University has published "University of North Carolina at Charlotte Standard Practice Procedures," which outline the security program at our facility. Those Standard Practice Procedures are maintained in the office of the Facility Security Officer and the Deputy Facility Security Officer.

Personal Information Security Breach Notification Procedures

Policy #: 
311
5

I. Executive Summary and Purpose

Peer-to-Peer File Sharing Regulation

Policy #: 
311
4
I. Introduction
 
Peer-to-peer (P2P) file sharing applications allow users to download and share electronic files of all types and to use any computer as a server for file sharing requests. Currently, some of the more common files shared in this fashion are audio files (e.g., mp3, wav, midi), video files (e.g., QuickTime, jpeg, mpeg, avi), and picture files (e.g., gif, jpeg).

Password Regulation

Policy #: 
311
3
I. Purpose

The purpose of this regulation is to establish requirements for faculty, staff, students and other authorized users regarding passwords in order to protect individual and University information and resources. Adherence to this policy will help ensure that the University network and information systems are secure and available to all authorized users.

GLBA Information Security Program Regulation

Policy #: 
311
2

I.  Executive Summary and Purpose

This document summarizes The University of North Carolina at Charlotte’s (the “Institution’s”) comprehensive written information security program (the “Program”) mandated by the Federal Trade Commission’s Safeguards Rule and the Gramm-Leach-Bliley Act (“GLBA”).  In particular, this document describes the Program elements pursuant to which the Institution intends to:

Credit/Debit Card Processing Regulation

Policy #: 
311
1
Executive Summary: 
I. Executive Summary and Purpose

This regulation provides requirements and guidance for all credit and debit card processing activities for UNC Charlotte.

At the initial publication of this regulation the following sources were consulted and provide the basis for this program: ISO 17799 and Visa CISP.

This regulation deals with access to the UNC Charlotte’s computing and network resources. All relevant provisions included in University Policy 303, 307, 311, are applicable and included by reference in this document. This regulation replaces and supersedes all other campus policies and procedures for all issues within the scope of this regulation.

II. Scope

This regulation applies to:

A. All academic and administrative units, organizations, affiliates, and employees of UNC Charlotte who accept credit/debit card payments for University business.

B. All external organizations contracted by the parties described in II. A., above, to provide outsourced services for Credit/Debit Card Processing for University business.

C. All academic and administrative units, organizations, affiliates, and employees of UNC Charlotte who provide Credit/Debit Card Processing services for third parties.

Mobile Communication Devices

Policy #: 
317
Executive Summary: 

Chancellor Dubois approved University Policy 125, Mobile Communication Devices, on September 8, 2009, effective September 23, 2009. This new policy was developed to address the use of mobile communication devices to conduct University business and the confusion surrounding various state and federal regulations regarding the use of such devices. This policy establishes guidelines for the use, documentation, and payment for these devices.

Definition

For the purpose of this Policy, Mobile Communication Devices (MCDs) are defined as cellular (“cell” or “mobile”) telephones (including cell phones with two-way communication capability), BlackBerries and other PDAs, pagers, wireless cards, and any other mobile communication devices.

Syndicate content

Policy Search

Search University Policies: