Preamble:
The "Safeguards Rule" promulgated by the Federal Trade Commission (FTC)
under the Gramm-Leach-Bliley Act ("GLBA") imposes specific standards
and obligations regarding the privacy of certain personally
identifiable financial information. Wichita State University
recognizes its obligation to protect the security, confidentiality and
integrity of such information and this policy is intended to implement
FTC requirements in this regard.
Policy Statement:
1. Wichita State University will make all reasonable efforts to achieve and maintain compliance with FTC standards and obligations regarding the privacy of personally identifiable financial information of its customers.
2. Wichita State University will develop, implement and maintain a comprehensive information security program.
3. Wichita State University's comprehensive information security program shall provide for the appointment of an information security plan coordinator; risk assessments; training programs for employees; oversight of service providers; and periodic adjustments of the program.
Implementation:
This policy shall be included in the WSU Policies and
Procedures Manual and shared with appropriate constituencies of
the University.
The Vice President and General Counsel shall have primary responsibility for publication, dissemination and implementation of this University policy.
Effective Date:
May 23, 2003
(See also Security of Credit Card Data at Section 13.14 of this manual.)