Policy Statement

Rockhurst University is committed to safeguarding its proprietary information and ensuring the security of its digital assets. This policy outlines the procedures and requirements for all faculty, students, and staff when using removable media devices, including but not limited to USB drives, external hard drives, CDs, DVDs, and other similar devices.

Scope

This policy applies to all members of the Rockhurst University community, including faculty, students, and staff.

Policy Requirements

  • Security Scans and Antivirus Software:
    1. All members of the Rockhurst University community must ensure that any removable media device they intend to use with university systems or for university-related purposes is scanned for malware and viruses before connecting it to any university-owned computer.
    2. Antivirus software must be installed and up-to-date on all university-owned and personal computers that may be used with removable media devices.
  • Protection of Proprietary Information:
    1. Proprietary information owned by Rockhurst University, including but not limited to research data, student records, financial information, and intellectual property, should only be stored on removable media devices for legitimate business use.
    2. Unauthorized removal of proprietary information from the university's premises or its use for non-Rockhurst University purposes is strictly prohibited.
  • Adherence to Data Privacy Policies:
    1. All faculty, students, and staff must adhere to Rockhurst University's data privacy policies when handling and transferring data using removable media devices.
    2. Personal information, student records, and any other sensitive data should only be transferred using encrypted and password-protected removable media devices.
    3. Data containing personally identifiable information (PII) or sensitive financial information must follow applicable data protection laws and university policies.
  • Encryption and Password Protection:
    1. All removable media devices used to store or transfer Rockhurst University data must be encrypted and password-protected to ensure data confidentiality.
  • Reporting Security Incidents:
    1. Any loss, theft, or suspicion of unauthorized access to removable media devices containing Rockhurst University data must be reported immediately to the IT department and the appropriate university authorities.

 Enforcement

Violation of this policy may result in disciplinary action, up to and including termination or expulsion, as well as legal action in cases of data breach or unauthorized disclosure of proprietary information.

Review and Updates

This policy will be reviewed periodically to ensure it remains effective and aligned with the university's security and data protection objectives. Any updates or changes to this policy will be communicated to the Rockhurst University community.