Welcome to the Gramm Leach Bliley section of our webpage.  This front page will reflect our most current information on GLB and related issues (e.g. privacy and security) affecting educational institutions.

 

Electronic Records Management Toolkit

The EDUCAUSE Security Task Force offers this Electronic Records Management Toolkit in order to provide a practical set of resources that will assist members of the higher education community in addressing related issues of electronic records management, e-discovery, and data retention on their own campuses. The Toolkit includes information on Records Retention and Disposition, Records Retention Template, Records Retention Inventory Worksheet, E-Discovery Guideline and Toolkit.

 

CRS Report to Congress: Information Security and Data Breach Notification Safeguards July 31, 2007 This report analyzes the Privacy Act, the Federal Information Security Management Act, OMB Guidance, the Veterans Affairs Information Security Act, HIPAA, and GLB.

 

GAO Report on Personal Information and Data Breaches: June 2007

Higher Education and PCI Compliance: Definitions, Challenges and Actions (2006)

E-Commerce and the Cardholder Information Security Program (CISP)
This Educause Effective Practice Detail provides basic information important for universities that sell products or services online and collect fees via credit card. The approach is meant to help institutions of higher education get started in assessing their responsibilities with regard to cardholder data that they may process or otherwise come in contact with, and help institutions determine whether there are regulatory obligations, what those obligations are, and some steps to take to help meet those obligations.




links updated 6/30/08 rab