Data Classification and Security (Policy 7.020)

Authority: Family Educational Rights and Privacy Act (FERPA); Gramm-Leach-Bliley Act of 1999 (GLBA); Health Insurance Portability and Accountability Act (HIPAA) of 1996; F.S. 119.01 et seq; 257.36; 1001.64; 1001.65; FAC 6A-14.0261
Date Adopted: 08/2012; 01/2013
Date of Review: 09/2012

Policy

It is the policy of the Board of Trustees that Seminole State College enterprise-level administrative data are an asset owned by Seminole State College. The College will protect the integrity and confidentiality of all enterprise-level administrative data and all user-developed data sets and systems that may access these data regardless of the environment in which they reside (including enterprise systems, servers, personal computers, mini-computers, etc.); the media on which the data reside (including electronic, microfiche, printouts, CD, etc.); or the form they may take (text, graphics, video, voice, etc.)

Data will be classified and security measures will be implemented commensurate with their value, sensitivity, and risk.

The President will cause procedures to be developed and established to implement this policy.

Contact