Felician College. Computer Use Policy. Office of Information Technology 262 South Main St Lodi, NJ

Transcription

1 Felician Cllege Office f Infrmatin Technlgy 262 Suth Main St Ldi, NJ Cmputer Use Plicy Intrductin - In supprt f Felician Cllege's missin f teaching and public service, the Infrmatin Technlgy (IT) Department prvides cmputing, netwrking, and infrmatin resurces t the Cllege cmmunity f students, faculty, and staff. This plicy regulates the use f all cmputing equipment and netwrk intercnnectins wned r administered by Felician Cllege. These include, but are nt limited t, administrative cmputing resurces, ffice and residence hall persnal cmputers, devices, campus-wide cmputer labratries, smart bards, netwrk servers, thin-client terminals, laptps, ipads, and assciated peripherals such as printers, scanners, cpiers and fax machines. Rights and Respnsibilities - Cmputers and netwrks can prvide access t resurces n and ff campus, as well as the ability t cmmunicate with ther users wrldwide. Such pen access is a privilege, and requires that individual users act respnsibly and adhere t institutinal plicy. Users must respect the rights f ther users, respect the integrity f cmputer and related physical resurces, and bserve all relevant laws, regulatins, cntractual bligatins. Students and emplyees may have rights f access t infrmatin abut themselves cntained in cmputer files, as specified in federal and state laws. Files may be subject t search under curt rder. In additin, system administratrs may access r examine files r accunts that are suspected f unauthrized use r misuse, r that have been crrupted r damaged. Institutinal cmputers and access t institutinal systems and sftware are fr business purpses and the prperty f the cllege. Existing Legal Cntext - All existing laws (federal and state) Cllege regulatins and plicies apply, including nt nly thse laws and regulatins that are specific t cmputers and netwrks, but thse that may apply generally t persnal cnduct. Misuse f cmputing, netwrking, r infrmatin resurces may result in the lss f cmputing privileges. Additinally, misuse can be prsecuted under applicable statutes. Users may be held accuntable fr their cnduct under any applicable Cllege plicies r prcedures. Cmplaints alleging misuse f cmputing resurces will be directed t thse respnsible fr taking apprpriate disciplinary actin. Unauthrized uses f any cmputers, netwrking r infrmatinal resurces are prhibited. Other rganizatins perating cmputing and netwrking facilities that are reachable via the Felician Cllege netwrk may have their wn plicies gverning the use f thse resurces. When accessing remte resurces frm Felician Cllege facilities, users are respnsible fr abiding by bth the plicies set frth in this dcument and the plicies f the ther rganizatins and netwrks. Illegal reprductin f sftware prtected by U.S. Cpyright Law is subject t civil damages and criminal penalties including fine and imprisnment. Examples f Misuse - Examples f misuse include, but are nt limited t, the activities in the fllwing list. Using a cmputer accunt that yu are nt authrized t use. Obtaining a passwrd fr a cmputer accunt withut the cnsent f the accunt wner.

2 Felician Cllege Office f Infrmatin Technlgy 262 Suth Main St Ldi, NJ Allwing smene else t use yur accunt. The wner f the accunt is respnsible fr the use (and misuse) f the accunt. The wner must take all respnsible precautins, including passwrd maintenance, t prevent use f the accunt by unauthrized persns. Faculty and staff with access t the Cllege's databases must prperly lg in and ut and when in the database - insure that nly thse with authrized access t the Cllege's databases view their screen. When finished with the database, users must lg ut t bth "free up" cmputer resurces and guard against unauthrized access r viewing. Using the campus netwrk t gain unauthrized access t any cmputer system Knwingly r carelessly perfrming an act that will interfere with the nrmal peratin f cmputers, terminals, peripherals, r netwrks. Knwingly r carelessly running r installing n any cmputer system r netwrk, r giving t anther user, a prgram intended t damage r t place excessive lad n a cmputer system r netwrk. This includes, but is nt limited t, prgrams knwn as, cmputer viruses, Trjan hrses, and wrms. Attempting t circumvent data prtectin schemes r uncver security lphles. Vilating terms f applicable sftware licensing agreements r cpyright laws. This includes the bradcast distributin f cpyrighted material frm electrnic surces. Deliberately r negligently wasting cmputer resurces. This includes, but is nt limited t, printing multiple cpies f a dcument n a Cllege-wned printer, prpagating chain letters, bradcasting an message t all system users withut authrizatin, string large files n hst cmputers, running prgrams n hst cmputers that use a disprprtinate share f system resurces, and failing t sign ff frm a mailing list yu have n interest in fllwing. Using electrnic mail t harass thers. Masking the identity f an accunt r machine. This includes, but is nt limited t, sending annymus e- mail. Using Cllege wned cmputing resurces fr any activity that is cmmercial in nature. Psting n electrnic bulletin bards r Internet services materials that vilate existing laws r the Cllege's cde f cnduct. This includes, but is nt limited t, psting bscene r sexually explicit pictures r text t a public n-line cnference, r psting f materials that are slanderus r defamatry in nature. Attempting t mnitr r tamper with anther user's electrnic cmmunicatins; reading, cpying, changing, r deleting anther user's files r sftware withut the explicit agreement f the wner; reading anther persn s .

3 Felician Cllege Office f Infrmatin Technlgy 262 Suth Main St Ldi, NJ All faculty develping curses fr n-line r distance learning must read and fllw the guidelines established by the Cllege's Distance Learning Crdinatr. Presentatins designed n (r run thrugh) the Cllege's netwrk r nn-netwrk equipment must adhere t the guidelines established in this use plicy. Activities will nt be cnsidered misuse when authrized by apprpriate Cllege fficials fr security r perfrmance testing. Treatment f Cnfidential Infrmatin Cnfidential infrmatin generally cnsists f nn-public infrmatin abut a persn r an entity that, if disclsed, culd reasnably be expected t place either the persn r the entity at risk f criminal r civil liability, r damage the persn r entity's financial standing, emplyability, privacy r reputatin. The Cllege is bund by law r cntract t prtect sme types f cnfidential infrmatin, and in ther instances the Cllege requires prtectin f cnfidential infrmatin beynd legal r cntractual requirements as an additinal safeguard. Cnfidential infrmatin includes but is nt limited t: payrll recrds, salary and nn-public benefits infrmatin Scial Security numbers, driver's license numbers, state identificatin card numbers, passprt numbers credit and debit card infrmatin, and financial accunt infrmatin persnnel recrds, including but nt limited t infrmatin regarding an emplyee's wrk histry, credentials, salary and salary grade, benefits, length f service, perfrmance, and discipline individual criminal backgrund check infrmatin individual cnflict f interest infrmatin individually identifiable bimetric infrmatin cmputer system passwrds and security cdes unpublished grant prpsals and unpublished research data unpublished manuscripts and crrespndence budgetary, departmental, r Cllege planning infrmatin nn-public financial, prcurement, health/safety, audit, insurance and claims infrmatin internal investigatin infrmatin, pre-litigatin, and nn-public litigatin and administrative agency charge, audit and inquiry infrmatin student recrds, including but nt limited t student educatin recrds within the meaning f the Family Educatinal Rights and Privacy Act prprietary r intellectual prperty in which the Cllege asserts wnership that is created by Cllege emplyees in cnnectin with their wrk nn-public law enfrcement recrds generated r maintained by the Cllege security ffices

4 Felician Cllege Office f Infrmatin Technlgy 262 Suth Main St Ldi, NJ all Cllege attrney-client cmmunicatins and Cllege attrney wrk prduct nn-public dnr and alumni infrmatin patient care recrds including patient benefit plan enrllment, claims, billing matters, and data cncerning human research subjects medical recrds, persnally identifiable medical infrmatin, and all infrmatin designated as "Prtected Health Infrmatin" under the Health Insurance Prtability and Accuntability Act (HIPAA), r therwise prtected by law all infrmatin, materials, data and recrds designated cnfidential by a Cllege unit, by law r by cntract, including infrmatin btained by the Cllege frm third parties under nn-disclsure agreements r any ther cntract that designates third party infrmatin as cnfidential Guidelines: 1. All emplyees with jb duties that require them t handle cnfidential infrmatin are required t safeguard such infrmatin and nly use it r disclse it as expressly authrized r specifically required in the curse f perfrming their specific jb duties. 2. Misuse f cnfidential infrmatin can be intentinal (acts and/r missins), r a prduct f negligence r inadvertence. Misuse includes but is nt limited t: Accessing infrmatin nt directly germane r relevant t the emplyee's specifically assigned tasks Disclsing, discussing and/r prviding cnfidential infrmatin t any individual nt authrized t view r access that data, including but nt limited t third parties, vlunteers, vendrs and ther Cllege emplyees Reckless, careless, negligent, r imprper handling, strage r dispsal f cnfidential data, including electrnically stred and/r transmitted data, printed dcuments and reprts cntaining cnfidential infrmatin Deleting r altering infrmatin withut authrizatin Generating and/r disseminating false r misleading infrmatin, and Using infrmatin viewed r retrieved frm the systems fr persnal r any ther unauthrized r unlawful use. 3. Emplyees wh have been assigned persnal access cdes t wrk with systems that generate, stre r manage cnfidential infrmatin bear the respnsibility fr preserving the cmplete cnfidentiality f such cdes t ensure against unauthrized use by any ther persn. Emplyees wh negligently r intentinally share their system passwrds r accunts with anyne else fr any reasn will be held respnsible fr any resulting misuse f the system by thers.

5 Felician Cllege Office f Infrmatin Technlgy 262 Suth Main St Ldi, NJ Emplyees wh have any reasn t believe r suspect that smene else is using their persnal access cdes must immediately ntify their supervisr. 5. Emplyees are prhibited frm lgging nt Cllege databases and administrative systems with their persnal access cdes and then permitting anther persn t access infrmatin in thse data bases and/r systems. 6. Student educatin recrds are gverned by the Family Educatinal Rights and Privacy Act (FERPA) and applicable Cllege plicy ( see the Student Handbk ) FERPA-prtected student educatin recrds must nt be disclsed under any circumstances absent the express cnsent f the Cllege student (r frmer student) r as authrized by the Cllege's Legal Cunsel r the Cllege's Registrar. Althugh FERPA als permits the Cllege t disclse student directry infrmatin (as defined by FERPA), n such infrmatin may be disclsed until the Office f the Registrar has cnfirmed that the student has nt elected t blck his r her directry infrmatin, as permitted by FERPA. 7. Emplyees are expected t: Identify cnfidential infrmatin and materials Practively seek infrmatin regarding and cmply with any restrictins n the use, administratin, prcessing, strage r transfer f the cnfidential infrmatin in any frm, physical r electrnic Learn abut and cmply with any prcedures regarding the apprpriate handling f such infrmatin and materials Understand their respnsibilities related t infrmatin security 8. Emplyees wh have access t cnfidential infrmatin are expected t knw and understand assciated security requirements, and t take measures t prtect the infrmatin, regardless f the data strage medium being used, e.g., printed media (frms, wrk papers, reprts, micrfilm, micrfiche, bks), cmputers, data/vice netwrks, physical strage envirnments (ffices, filing cabinets, drawers), and magnetic and ptical strage media (hard drives, diskettes, tapes, CDs, flash drives). Cmputer display screens shuld be psitined s that nly authrized users can view cnfidential infrmatin, and cnfidential infrmatin shuld be discarded in a way that will preserve cnfidentiality (e.g., in a shred bx, nt in a trash can r recycling bin). 9. In many instances, emplyees will be required r expected t attend training relevant t the infrmatin/materials being handled. Emplyees wh are hired int psitins that require adherence t gvernment-mandated cmpliance (e.g., HIPAA, Medicare Cmpliance, grant and cntract administratin, pathgens r select agents) will be subject t strict prcedures fr handling such materials, must attend all mandated training sessins, and cmply with cmpliance-specific plicies and applicable law.

6 Felician Cllege Office f Infrmatin Technlgy 262 Suth Main St Ldi, NJ Emplyees must ntify the Cllege f any vilatin f these guidelines. Emplyees may reprt their cncerns immediately t their supervisr, department head, r central Cllege administratin Enfrcement - Emplyee misuse f cnfidential infrmatin and/r the systems in which the infrmatin is stred is a serius breach f jb respnsibilities Penalties fr vilatin f this plicy may be impsed under ne r mre f the fllwing; Felician Cllege plicies and regulatins, the-laws f the state f New Jersey; and the laws f the United States. Penalties may include lss f access t Cllege cmputing resurces, either temprarily r permanently, suspensin r terminatin. Minr infractins f this plicy will be handled by persnnel frm the IT Department in an infrmal manner. Serius vilatins will be referred t the apprpriate Cllege authrities fr frmal investigatin and actin accrding t established prcedures. I HAVE READ AND AGREE TO THE FOLLOWING TERMS AND CONDITIONS Emplyee Signature