Site Menu
- Policy
- University
- State & Federal
- Institutional Data
- Tools & Templates
- Standards & Frameworks
- FAQ
- Links
- Contact Us
- Site Map
What's New?
Gramm-Leach-Bliley Training New training created for those with access to customer information at the university.
Units Can Access Information Security Monthly Status Reports via Web Form Colleges and administrative units can submit their monthly information security status reports online using a web form. Use the links below to access the form and download instructions.
Hot Topics
- Institutional Data Policy Training
- Data Classification
- Implementation Plan
- University Security Standards (UCSS)
- Relevant Federal Laws & Regulations
Incident Response
Ohio Policies
- Ohio Revised Code §1347: Ohio Revised Code §1347 (formerly referred to as House Bill 104) establishes requirements for notifying Ohio residents in the event that certain personal information is disclosed or reasonably believed to be disclosed to unauthorized persons through a system security breach. Personal information as defined in this law includes an individual's name coupled with his or her Social Security number, driver’s license number and/or credit card information. Specific requirements vary depending on the size and certainty of the disclosure.
- Ohio Senate Bill 126 went into effect March 30, 2007. This legislation exempts persons, entities, state agencies and agencies of political subdivisions that are “covered entities” under the federal Health Insurance Portability and Accountability Act (HIPAA) from the disclosure requirement related to unauthorized access to personal information as required by Ohio Revised Code 1347.12.
