Privacy and Security
-
Policy
Access to Electronic Information Policy
Responsible Office(s): Office of the Vice President Information Services and Technology
Last Modified: 06/01/2017 -
Resource
Additional Guidance on Data Protection Standards
Responsible Office(s): Information Security
-
-
Policy
Applicants to Boston University Jobs in the United States – Privacy Notice
Responsible Office(s): Human Resources
Last Modified: 09/17/2018 -
-
Guide
BU Desktop Asset Management Policy Guide
Responsible Office(s): Information Services and Technology
-
Procedure
BU Google Apps Acceptable Use and Data Security
Responsible Office(s): Information Security | Information Services and Technology
-
Procedure
BU OneDrive Security Guide
Responsible Office(s): Information Security | Information Services and Technology
-
Policy
Copyright Violation Policy
-
Last Modified: 10/21/2017
-
Policy
Cyber Incident Response Policy
Responsible Office(s): Office of the Vice President Information Services and Technology
-
Policy
Cybersecurity Training, Compliance, and Remediation
Responsible Office(s): Information Security
Last Modified: 04/29/2021 -
Last Modified: 04/12/2023
-
Last Modified: 04/12/2023
-
Last Modified: 04/12/2023
-
-
Guidelines
Destruction of Individual Files on Reusable Media (1.2.D.2 – Data Protection Standards Guidance)
-
-
Resource
Digital Millennium Copyright Act (DMCA) and Copyright Infringement
Responsible Office(s): Information Security
-
-
Last Modified: 08/03/2018
-
Policy
Disclaimer for Student and Personal Websites
Responsible Office(s): Information Services and Technology
-
Policy
Family Educational Rights and Privacy Act (FERPA) Policy
Responsible Office(s): Office of the University Provost
-
Procedure
Google Drive Security Guide for FERPA
Responsible Office(s): Information Security | Information Services and Technology
-
-
Last Modified: 04/28/2024
-
Policy
Information Security Policy
Responsible Office(s): Office of the Vice President Information Services and Technology
Last Modified: 04/12/2023 -
Policy
IS&T and BUMC IT Data Center Policy
Responsible Office(s): Information Security | Information Services and Technology
-
Procedure
Learning Management System Policies
Responsible Office(s): Information Services and Technology
-
Last Modified: 04/12/2023
-
Policy
Network Security Monitoring Policy
Responsible Office(s): Office of the Vice President Information Services and Technology
Last Modified: 01/12/2018 -
Procedure
Office 365/SharePoint Online Security Policy
Responsible Office(s): Information Security | Information Services and Technology
-
Guidelines
PCI Data Security Standards (for accepting credit cards) (5.2.3)
Responsible Office(s): Cashier
-
Guidelines
Physically Destroying Reusable Storage Devices (1.2.D.4 – Data Protection Standards Guidance)
-
Instructions and Forms
Releases for Photos and Videos
Responsible Office(s): Office of the General Counsel
-
Policy
Research Privacy and Confidentiality Policy, Charles River Campus IRB
Responsible Office(s): Office of Research
-
Policy
Safeguarding Information – Gramm-Leach-Bliley Act (GLBA)
Responsible Office(s): Office of the Controller
-
Guidelines
Securely Erasing Entire Reusable Storage Devices (1.2.D.3 – Data Protection Standards Guidance)
-
-
Policy
Vulnerability Management Policy
Responsible Office(s): Information Security | Information Services and Technology
-
-
Policy
BU Research Compliance Policy on Acquisition and Documentation of Post-Mortem Human Samples
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policy Manual – Privacy and Security of Protected Health Information for BU Healthcare Provider Covered Components
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Guide
HIPAA Information for Charles River Campus Researchers
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policy Manual – Privacy and Security of Protected Health Information for BU Healthcare Provider Covered Components
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for BU Health Plans Manual – Privacy and Security of Protected Health Information for BU Health Plans
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Appendix A, Contacts
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Introduction, HIPAA and the Boston University Health Plans
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 1, Basics
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 2: Individual Responsibilities for Safeguarding PHI
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 3, Routine Use and Disclosure of PHI
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 4, Non-Routine Uses and Disclosures of PHI without Authorization; Prohibited Uses
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 5, Authorizations
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 6, Individuals’ Rights Under HIPAA
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 7, Breaches
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 8, Security Policy
Responsible Office(s): Research Compliance
-
Policy
HIPAA Policies for BU Health Plans: Policy 9, Definitions
Responsible Office(s): Research Compliance
-
Policy
HIPAA Health Care Providers Policies Appendix A: Contacts
Responsible Office(s): Research Compliance
Last Modified: 01/19/2024 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Introduction – HIPAA at Boston University
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 1, HIPAA Basics
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 10, Exceptions
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 11, Definitions
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 2, Individual Responsibilities for Safeguarding PHI
Responsible Office(s): Research Compliance
Last Modified: 09/20/2024 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 3 – Using PHI in Treatment, for Payment and for Health Care Operations; Business Associates
Responsible Office(s): Research Compliance
Last Modified: 11/26/2024 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 4, Uses Required or Permitted by Law; Prohibited Uses of PHI
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 5, Situations in which Authorizations are Necessary
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 6, Individuals’ Rights under HIPAA
Responsible Office(s): Research Compliance
Last Modified: 08/26/0024 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 7, Breaches
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 8, HIPAA Security Program
Responsible Office(s): Research Compliance
Last Modified: 10/29/2021 -
Policy
HIPAA Policies for Healthcare Providers at Covered Components: Policy 9, Documentation and Retention
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018 -
Policy
HIPAA Policy Manual – Privacy and Security of Protected Health Information for BU Healthcare Provider Covered Components
Responsible Office(s): Research Compliance
Last Modified: 11/01/2018