The CUNY Information Technology Security Procedure states that non-public University data must not be stored, transported, or taken home on portable devices of any type without specific approval of the Vice President of Administration or the equivalent at the College or in the Central Office department by the University Information Security Officer. Where approval is granted, additional password protection and encryption of data are required. The Office of Technology Systems has encryption tools available to staff and faculty to comply with the requirements of the procedure.
Those employees who have access to student/employee non-public data, through SIMS, the CSI Student Information Intranet System, the CSI MS Access Data System, CUNYfirst, or any other system containing confidential data, must not transport this data on portable devices.
Your adherence to this procedure is imperative. Thank you for your cooperation.
-Michael Kress, PhD