Policies and Procedures

Policies and Procedures – Frequently Asked Questions
Copyright Act: Notice And Notice Regime
Data Classification and Handling Standards
Policies and Procedures

Policies and Procedures – Frequently Asked Questions

University Policies are approved by Senior Management Committee (SMC). SMC policies apply to ALL faculties and departments, university wide. ITS Policies apply to services administered by ITS and anyone using those services.

Can I purchase computer hardware from any vendor I choose?

The Desktop and Laptop Computer Equipment Policy states that “all desktop and laptop computer equipment purchased with operating
funds must be purchased from the preferred vendor and equipment list”. A list of vendors is on Procurement Services site. This is an SMC policy and applies to all areas of the university.

We found a great online service that we want to use, can we sign up right away?

Because online services present a unique set of risks to the entire university, well beyond your own faculty or department, the Cloud Computing policy states that “Data Protection Risk Assessments must be performed prior to the exchange of information and awarding of a contract. Assessments are conducted by the ITS Security Governance team and the University’s Privacy Office.” Additionally, contract language will be reviewed by the university’s legal counsel to understand the risks and potential exposure the service may present to the university. This is an SMC policy and applies to all areas of the university.

Copyright Act: Notice And Notice Regime

On January 2, 2015, the Notice and Notice regime of the Copyright Modernization Act came into force. The goal of the Notice and Notice regime is to discourage online copyright infringement.

Learn more about the Copyright Act’s Notice And Notice Regime (facts and FAQ)

Data Classification and Handling Standards

All members of the Carleton University community have a responsibility to protect the confidentiality, integrity, and availability of data and information generated, accessed, modified, transmitted, stored or used by the University, irrespective of the medium on which the data resides and regardless of format; e.g., electronic, paper or other.

Learn more about the university’s data classification and handling requirements

To access university policy documents, please visit the University Secretariat website using this list as a guide to IT-related policies.

ITS-specific polices are listed and accessible here.

University Policies

Acceptable Use Policy for Information Technology
Access to Information and Privacy
Acquisition of Wireless Cellular Services Policy
Anti-Spam Compliance
Cloud Computing Security
Data and Information Classification and Protection
Desktop and Laptop Computer Equipment
Email (Electronic Mail) Use
Information Security Incident Response
Information Security Policy
Information Technology (IT) Security
Mobile Technology Security
Password Policy for Information Systems
Remote Network Access
Telecommunications Cabling and Wiring
Web Content

ITS Policies

ITS Guidelines and Procedures

Share: Twitter, Facebook
Short URL: https://carleton.ca/its/?p=27876