Use confidential information responsibly
UA community members are creators and custodians of various types of confidential, proprietary, and private information. Each UA community member is required to comply with federal and state laws and regulations, agreements with third parties, and UA policies pertaining to the use, protections, and disclosure of such information.
UA community members are expected to:
- Learn and follow all laws, UA policies, and agreements with third parties regarding access, use, protection, disclosure, retention, and disposal of public, private, and confidential
information; - Respect the privacy of all information records, whether student, employee, or patient;
- Follow document retention and disposal policies;
- Maintain information security using appropriate electronic and physical safeguards; and
- Fulfill any applicable requirements when one’s relationship to UA is terminated. The obligation to preserve confidential information continues even after one’s employment
and/or relationship with the University ends.
Key Policies, Statements, and Guidelines
Examples of Prohibited Conduct
- Disclosing protected student or patient information without verifying permission to do so.
- Leaving sensitive information unsecured.
- Lack of appropriate controls to ensure that financial information including credit card numbers is appropriately secured.
- Failure to immediately report a data breech.