The School of Medicine and Public Health (SMPH) is committed to maintaining the privacy, confidentiality, and security of university-owned data. This policy supports a comprehensive governance, risk, and compliance (GRC) program and serves to be consistent with information security best practices associated with organizational information security management. The purpose of this policy is to set forth requirements and expectations related to and supporting information system data encryption.
This policy applies to all SMPH departments, centers, and institutes.
This policy establishes requirements of necessary controls and processes supporting the implementation of effective encryption methodologies while ensuring the confidentiality, integrity, and availability of departmental and SMPH information systems and university-owned data. This policy maintains that:
01-14-2020, 08-26-2019, 12-20-2021