Published on Information Technology Services (https://its.humboldt.edu)

Home > Printer-friendly > Data Management & Security

The campus data management policy defines who can authorize access to different sets of information.  Since the organization of the campus changes frequently, the list of who is responsible for managing and granting access to the sets of data is maintained separately and can be accessed here [1].

The Data Owners List [1] contains the current matrix of record types, data managers, and access grantors for protected information stored on campus systems. In line with the current draft Data Management policy (available on request), this document will be updated as and when assigned roles change.

Questions about the Data Owners List and the Data Management policy should be addressed to iso-staff@humboldt.edu [2].

Special Requirements for Accessing Level 1 Data

The law requires that HSU and its employees, consultants, and independent contractors maintain the confidentiality, security, and integrity of all personally identifiable information (PII) stored and/or used by anyone associated with the University. We use two tools to comply with these requirements:

  1. Spirion [3]is installed on every office computer and can help you identify and locate Level 1 data on your system. Spirion must be run at least once a year.
  2. All users with access to Level 1 data are now required to use dual-factor authentication. The CSU provides a license to DUO to enable us to implement this. Below are some helpful tips for working with DUO [4]:
    • Make sure you have more than one second factor set up, like your desk phone, in case your main second factor fails
    • If you have a smart phone set up as your second factor and are upgrading your phone, use DUO Restore [5] to update your settings
    • Click "Remember me for 12 hours" if you're going to be working for a while. Note that, if you've changed your DUO settings to "Automatically send this device a Duo Push", you may not be able to access this setting. If you reset your When I log in setting to "Ask me to choose an authentication method", you'll be able to access it again.
    • Add as many devices as you need [6] and edit them as you need [7]

 

Source URL: https://its.humboldt.edu/security/data-management-security

Links
[1] https://its.humboldt.edu/sites/default/files/docs/Data%20Owners%20List%2010_14_2016.pdf
[2] mailto:iso-staff@humboldt.edu
[3] https://its.humboldt.edu/security/spirion
[4] https://www.duo.com
[5] https://help.duo.com/s/article/duo-restore?language=en_US
[6] https://guide.duo.com/add-device
[7] https://guide.duo.com/manage-devices