University staff are responsible for the proper evaluation of the use of the university`s computer resources. Staff may only use this data for the purposes for which access has been granted. This includes protecting data from people who are not allowed to view or access this information. No unauthorized user should see, hear or use the user`s data without proper permission. In keeping with the trust that the university has placed in users, it is the responsibility of staff to maintain the confidentiality of the data they work with and to keep data secure and accessible only to those who have rights to that information. Faculty and staff members regularly have access to highly sensitive information that may be of unusual interest to or to others, both inside and outside the university. Due to the sensitive nature of information available to staff, all must meet the highest standards for the safe and professional management of the university`s information. The submission of confidentiality agreements was developed and approved in 2014 by the Data Management Steering Committee, consisting of the Executive Vice President`s Office, the Office of General Counsel, the Office of Human Resources, the Office of Information Technology, the Office of Finance and Treasury, the Office of Audit and Compliance, the Dean of the Faculty and the Office of the Registrar. The model is provided as a guide for the use of departments to properly protect the confidential and confidential information of the university.
I understand the information contained in this document and agree to take the necessary steps to protect the private information of Michigan students, teachers and staff in accordance with the university`s information security plan. Staff members cannot disclose this information to the communication in any way, through transfer. B of files, through written or oral communications, unauthorized transfer of emails or any other means of disclosure without proper authorization. If, at any time, it is considered that the data is compromised, the IT should be notified immediately. Deliberate access to data and information or the risk of neglect or insufficient protection of this information or information may lead to disciplinary action up to termination. Each employee is responsible for maintaining the confidentiality of the data to which they can access. Line managers are responsible for informing staff about policies and procedures and restrictions on confidential information in their field. Although university staff are not required to sign the agreement, the Committee urges each department to consider adopting this agreement, if necessary, and to establish an internal process in which staff can certify it both on hiring and on an annual basis. If this agreement does not exactly meet the specific needs of the departments, directors should discuss the changes with the Office of General Counsel. Staff are also responsible for backing up data both when used by authorized users and, if printed, faxed or archived (online or offline), including: appropriate security measures, including locking your workstation out of the office, locating the monitor so it can`t be displayed by others , back up mobile devices and don`t share passwords.