University Policies

Data Protection Standards 

HIPAA Policies for Health Care Providers

HIPAA information for Charles River Campus Researchers

Policy on Access to Electronic Information

Policy on Network Security Monitoring

BU Family Educational Rights and Privacy Act (FERPA)

Payment Card Industry Data Security Standard

Red Flag Rules Identity Theft Policy

BU Gramm-Leach-Bliley Act Safeguarding Program (GLBA)

Broadcast Email

IS&T Policies

Information Security

Secure Data Center Access Policy

Policy Violation Notification Procedure

Data Protection Standards – Additional Guidance

Destruction of Paper Records and Non-Erasable Media (CD-ROMs, DVDs)

Destruction of Individual Files on Reusable Media

Securely Erasing Entire Reusable Storage Devices

Physically Destroying Reusable Storage Devices

InCommon Federation: Participant Operational Practices

BU Desktop Asset Management Policy Guide

Cloud Services Security

BU Google Drive Security Guide for FERPA Policy

BU OneDrive Security Guide for FERPA and HIPAA Policy

Office 365/SharePoint Online Security Policy

Social Media Guidelines

BU Google Apps Acceptable Use and Data Security

Learning Management System Policies

Disclaimer for Student and Personal Web Sites