Data

5.11 Administrative Data Store Registry

5.11

Unit data custodians or their delegates are required to register any persistent administrative functional area data repositories.

3.17 Accepting Credit Cards to Conduct University Business

3.17

For all units that accept credit cards as a method of payment for goods or services in relation to university business/operations, Cornell University requires compliance with Payment Card Industry – Data Security Standards (PCI-DSS) protocols, and with the procedures outlined in this document.

4.4 Access to Cornell Alumni Affairs and Development Information

4.4

Cornell University respects the privacy of alumni affairs and development information and limits access to that information to authorized individuals.

4.5 Access to Student Information

4.5

It is the policy of Cornell University to comply with the Family Educational Rights and Privacy Act, 20 U.S.C. §1232g ("FERPA").

4.12 Data Stewardship and Custodianship

4.12

The university expects all stewards and custodians of its administrative data to manage, access, and utilize this data in a manner that is consistent with the university's need for security and confidentiality.

Array

5.3 Use of Escrowed Encryption Keys

5.3

Cornell University expects stewards, custodians, and users of institutional administrative data who deploy software or algorithmic programs for encryption to establish procedures ensuring that the university has access to all such records and data.

Array

5.4.1 Security of Information Technology Resources

5.4.1

Cornell University expects all individuals using information technology devices connected to the Cornell network to take appropriate measures to manage the security of those devices.

5.4.2 Reporting Electronic Security Incidents

5.4.2

Users of information technology devices connected to the Cornell network must report all electronic security incidents promptly and to the appropriate party or office.

Array

5.5 Stewardship and Custodianship of Electronic Mail

5.5

Cornell University owns and operates its electronic mail (e-mail) infrastructure, which must be managed for the entire university community in a manner that preserves a level of privacy and confidentiality in accordance with relevant laws, regulations, and university policy.

Array

5.8 Authentication to Information Technology Resources

5.8

Cornell University owns and manages university electronic identifiers. In the course of its business and missions, it provides its community with access to information technology (IT) resources, such as e-mail, Internet, and network devices through these identifiers. To protect these resources

Email:	policy@cornell.edu
Phone:	(607) 255-8279
Hours:	8:00 a.m. - 4:30 p.m., Monday – Friday

Pages for:

Quick Links

FACULTY

STAFF

STUDENTS

Data

5.11 Administrative Data Store Registry

3.17 Accepting Credit Cards to Conduct University Business

4.4 Access to Cornell Alumni Affairs and Development Information

4.5 Access to Student Information

4.12 Data Stewardship and Custodianship

5.3 Use of Escrowed Encryption Keys

5.4.1 Security of Information Technology Resources

5.4.2 Reporting Electronic Security Incidents

5.5 Stewardship and Custodianship of Electronic Mail

5.8 Authentication to Information Technology Resources

Pages

Cornell University Policy Office