1. Policies and Procedures – Frequently Asked Questions
  2. Copyright Act: Notice And Notice Regime
  3. Data Classification and Handling Standards
  4. Policies and Procedures
    1. University Policies
    2. ITS Policies
    3. ITS Guidelines and Procedures

Policies and Procedures – Frequently Asked Questions

Q: Which policies apply to my area?
A: University Policies are approved by Senior Management Committee (SMC). SMC policies apply to ALL faculties and departments, university wide. ITS Policies apply to services administered by ITS and anyone using those services.

Q: Can I purchase computer hardware from any vendor I choose?
A: The Desktop and Laptop Computer Equipment Policy states that “all desktop and laptop computer equipment purchased with operating
funds must be purchased from the preferred vendor and equipment list”. A list of vendors is on Procurement Services site. This is an SMC policy and applies to all areas of the university.

Q: We found a great online service that we want to use, can we sign up right away?
A: Because online services present a unique set of risks to the entire university, well beyond your own faculty or department, the Cloud Computing policy states that “Data Protection Risk Assessments must be performed prior to the exchange of information and awarding of a contract. Assessments are conducted by the ITS Security Governance team and the University’s Privacy Office.”  Additionally, contract language will be reviewed by the university’s legal counsel to understand the risks and potential exposure the service may present to the university. This is an SMC policy and applies to all areas of the university.

Copyright Act: Notice And Notice Regime

On January 2, 2015, the Notice and Notice regime of the Copyright Modernization Act came into force.  The goal of the Notice and Notice regime is to discourage online copyright infringement.

Learn more about the Copyright Act’s Notice And Notice Regime (facts and FAQ)

Data Classification and Handling Standards

All members of the Carleton University community have a responsibility to protect the confidentiality, integrity, and availability of data and information generated, accessed, modified, transmitted, stored or used by the University, irrespective of the medium on which the data resides and regardless of format; e.g., electronic, paper or other.

Learn more about the university’s data classification and handling requirements

Policies and Procedures

University Policies

*** For a complete list of university policies, visit the University Secretariat website.

ITS Policies

ITS Guidelines and Procedures