NC State University

 

History of Data Management Procedures

Authority:  Issued by the Chancellor. Changes or exceptions to administrative regulations issued by the Chancellor may only be made by the Chancellor.

History:

First Issued:

January 19, 1990; Reviewed by the Security Review Committee, February 2001.  Amendments endorsed by the University Council on April 9, 2001,

Revisions:

June 27, 2002 (Archive version).

December 10, 2003 Archive version (Effective December 10, 2003 through July 28, 2004) .

June 1, 2004 – The following three substantive changes were made to the Data Management Procedures regulation:

  1. Addition of a Security Administrator. Section II(C)5.

  2. Addition of substantive provisions for pictorial images (including data stewards and others with responsibility for the same). Section III(B)2 – V, W, X.

  3. Addition of new delegations related to the Data Custodian who is the Director of Administrative Computing Services and is responsible for managing access to the data in the administrative systems. Section III(C)1 and 2.

July 29, 2004 Archived Version (Effective July 29, 2004 through December 18, 2006) - revised regulation to add appendix G "memorandum of record" regarding data steward delegation of authority

December 19, 2006 Current Version - The purpose of this Regulation is to assign responsibility for custody and security of University Data. This update to the Regulation applies to all University Data, regardless of the environment where the data reside, rather than centrally managed data only. The proposed Data Classification Standard has been incorporated into this REG at the suggestion of the Dean's Council. Data Classification defines the classification levels assigned to different types of University Data and ensures security controls are applied consistently for data of similar sensitivity and confidentiality requirements across the various University colleges and departments.

Related Policies:
NCSU POL08.00.1 -Computer Use Policy
NCSU REG08.00.2 - Computer Use Regulation
NCSU REG01.25.11 - Process for Requesting Access to Social Security Numbers

Related Information:
Confidentiality of Computer Data at NC State
N.C. Gen. State. § 14-453 (1999) - computer-related crimes
North Carolina Identity Theft Protection Act (2005 SB-1048)
Information Security Acknowledgement Form
University Data Trustees, Data Stewards, and Data Custodians
Data Classifications Examples
NCSU Policies Rules and Regulations Website
Office of Legal Affairs Website

Contact Info:  Associate Vice Chancellor for Resource Management and Information Systems (919-515-9224); Vice Provost for Information Technology, Information Technology Division (919-515-5493)