Policies
UMD IT Policies
Policy on the Acceptable Use of Information Technology Resources
IT resources are provided to support the academic, research, instructional, and administrative objectives of the university. This policy sets forth standards for responsible and acceptable use of university information technology (IT) resources. These resources include computer systems, computer labs, applications, networks, software, and files.
Policy on the Acceptable Use of Information Technology Resources - UMD Policy X-1.0(A)
Privacy Policy
The UMD Privacy Policy establishes a framework for compliance, responsibility, and accountability as it relates to an individual’s privacy rights, with regard to the collection, use, and protection of personally identifiable information.
Privacy Policy - UMD Policy X-15.00(A)
Web Accessibility Policy
UMD is committed to creating and maintaining a welcoming and inclusive educational and working environment for people of all abilities and to ensuring equal access to information and services for all its constituencies. Web-based information and service delivery are the primary means by which the campus community and its visitors communicate and conduct business. These are minimum standards for the accessibility of all university Web pages used to conduct core university business and academic activities to ensure compliance with applicable state and federal regulations, specifically, Sections 504 and 508 of the Rehabilitation Act of 1973 and the Americans with Disabilities Act (ADA) of 1990.
Web Accessibility Policy - UMD Policy VI-1.00(E)
Policy on Telephone System Usage
The UMD telephone system provides service for conducting university business. Use of the telephone system is subject to university network policies along with this policy. It provides details about usage, records, information services, voicemail, and emergency calls.
Policy on Telephone System Usage (UMD Policy X-3.00(A)
Policy and Procedures Concerning Telephone Billing
Costs for equipment, service and calls shall be charged back to using departments. Detailed billing information shall be sent to each using department on a monthly basis.
Policy and Procedures Concerning Telephone Billing - UMD Policy X-3.01(A)
Policy and Procedures Concerning the Acquisition of Telecommunication Services and Equipment
Acquisition by purchase, lease or rental of voice communications equipment must have the prior review and endorsement of telecommunication services.
Policy Concerning the Use of Telecommunications Wiring and Facilities
The integrity, security, and safety of the UMD network is the responsibility of DIT. Strict control over the physical infrastructure and facilities must be maintained to prevent tampering, accidental damage, or service degradation. Existing telecommunications, wired and wireless, may not be altered in any way except by DIT personnel or with DIT approval. This includes, but is not limited to, copper, fiber, and coaxial cabling as well as wireless access points and antennae used for voice, data, and video communications in addition to telecommunications facilities located in various university buildings.
Policy Concerning the Use of Telecommunications Wiring and Facilities - UMD Policy X-3.04(A)
Policy on University Funded Cellular Telephones and Service
University issued and funded cellular telephones are provided to facilitate the effective and efficient performance of University of Maryland at College Park official business. Departmental directors and unit heads are responsible for establishing the appropriate internal procedures to ensure compliance with this policy within their respective areas of responsibility.
Policy on University Funded Cellular Telephones and Service - UMD Policy X-3.06(A)
Policy on Institutional Data Management
This policy establishes a framework for the management of university institutional data and the responsibilities for the protection of those data.
Policy on Institutional Data Management - UMD Policy VI-22.00(A)
Policy on Data Management Structure and Procedures
UMD recognizes institutional data as an asset of the university and has implemented a data management structure that defines five levels of responsibility.
Policy on Data Management Structure and Procedures - UMD Policy VI-23.00(A)
Policy on Compliance With the Health Insurance Portability and Accountability Act
The policy of the University of Maryland, College Park is to comply with the Health Insurance Portability and Accountability Act of 1996 and its implementing regulations (collectively “HIPAA”) to the extent that HIPAA is applicable to the university as a hybrid entity.
Policy on Gramm-Leach-Bliley Act Information Security Program
This policy describes the university’s information security program mandated by the Federal Trade Commission’s Safeguard Rule and the Financial Services Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA).
Policy on Gramm-Leach-Bliley Act Information Security Program - UMD Policy VI-25.00(A)
Policy on the Collection, Use and Protection of ID Numbers
Use of the Social Security Number (SSN) as an identifier will be discontinued, except where required for employment, IRS reporting, Office of Institutional Research, Planning & Assessment, federal student financial aid processing, state and federal reporting and a limited number of other business transactions. While the SSN will be collected and retained as authorized by law, it will not be used for routine identification or authentication purposes.
Policy on the Collection, Use and Protection of ID Numbers - UMD Policy VI-26.00(A)
Policy on Identity Theft Prevention Program
This policy describes the university’s Identity Theft Prevention Program mandated by the Federal Trade Commission’s Fair and Accurate Credit Transactions Act (FACT Act).
Policy on Identity Theft Prevention Program - UMD Policy VI-29.00(A)
University System of Maryland (USM) Policies and Procedures
The USM bylaws, policies, and procedures detail additional policies, procedures, guidelines, and rules applicable to the entire University System of Maryland.
University System of Maryland Bylaws, Policies, and Procedures
State of Maryland Information Technology Security Policy and Standards
The Department of Information Technology (DoIT) is required by Maryland state law (MD State Finance and Procurement Code Ann. § 3A-301-309) to develop and implement policy, standards, and implementation guidance to promote the mission-effective and cost-efficient use of various types of IT to enable a wide range of state agency mission and support functions.