Search300 Results

This Standard to the Policy on Enterprise Data Governance describes each role that plays a part in governing University Data at the University of North Carolina at Chapel Hill ("University"). The roles are: Enterprise Data Coordinating Committee (EDCC); data trustees, data stewards, and data managers, who make up the Data Governance Oversight Group (DGOG); and data custodians in units across campus. This Standard also defines what kind of data makes up the University’s "enterprise data."

To describe minimum requirements for members of the University of North Carolina at Chapel Hill ("University" or "UNC-Chapel Hill") experiencing a concern that might indicate a Possible Information Security Incident. To specify Information Security Incident authority and role requirements for Information Security Incident Handlers and Information Security Liaisons.

This document describes who at the University of North Carolina at Chapel Hill appoints Information Security Liaisons and what those Information Security Liaisons do.

This standard defines the minimum security controls for Information Technology systems in use at UNC-Chapel Hill including personal and University-owned devices. Units within the University may apply stricter controls to protect information and systems in their areas of responsibility. The standard applies to each UNC-Chapel Hill Constituent, student, employee, or other for any covered system under their control.

This Standard is meant to provide the minimum expectations for users of the University of North Carolina at Chapel Hill’s Data Management System (“DMS”) for Clinical Research Administrative Data. This Standard is intended to further the University’s goals of providing DMS users with efficient and accurate administrative data and to promote legal and regulatory compliance.

This standard provides structure for effective operation of data networks for the University in accordance with the UNC-Chapel Hill Data Network Policy. This document represents minimum requirements related to all forms of data networking at the University.

The purpose of this Standard is to ensure efficient operations and academic integrity in the Adams School of Dentistry ("ASOD") assessment process. This Standard applies to all written assessments administered by the ASOD to its DDS and DH students.

Instructions for IT staff, system administrators, and others with IT management responsibilities on how to properly manage contents of individual persons' accounts, as well as logs and other data on individual use of IT systems. The Standard aids compliance with University IT policies including the University of North Carolina at Chapel Hill Policy on Access to Individual User Accounts (“Account Policy”).

The purpose of this document is to create a policy to 1) mandate training for all Purchasing Card Accountholders, Group Proxy Reconcilers, and Group Approvers and 2) enforce penalties on Purchasing Card Accountholders who violate their Accountholder Agreement by not complying with the terms and conditions regarding use of their P-Card account.

We will issue Building Access Cards to contractors for special projects by the authority and sponsorship of the Department where the work is being done. We will gather all required information from the contractor and enter that into our One Card Database for tracking purposes.

In accordance with the Identity Theft Protection Act of 2005, North Carolina General Statutes § 75-60 et seq. and § 132-1.10 of the Public Records Act (together, the "Act"), the University of North Carolina at Chapel Hill (the "University") is required to safeguard certain information of patients, employees, students, vendors, and other individuals who provide information covered by the Act to the University. This protocol enables the University to comply with the Act.

This procedure explains the process of P-Card reconciliation. It details the process for online charges and the duties of the Accountholder or Group Proxy Reconciler.

This document provides approved guidance for writing and authorizing new University and Information Technology Services (ITS) Department Policies, Standards, and Procedures; for revising existing ITS Policies, Standards, and Procedures; and delineating approval authorities at all levels.

This document describes how UNC-Chapel Hill complies with (1) the Payment Card Industry's (including American Express, Discover, Master Card, VISA, and other major card brands) important and stringent security requirements to protect payment card data; and (2) with E-Commerce policies published by the NC Office of State Controller.

Payment card merchant accounts must be compliant with all applicable Data Security Standards (DSS) for their method of payment acceptance. Maintaining Payment Card Industry (PCI) compliance is a continual process.