INFORMATION SECURITY

Security awareness

• University data and you
• Protect yourself
• Protect your computer
• Security awareness links

Information security policies

• Information security policies

Security training materials

• Mandatory information security training
• Further training resources

News

• Security issues in the news
• News for IT support staff
• Data protection advisors

Information security policies

All members of the university must act in accordance with the following laws and University policies:

• Information Access and Security Policy (PDF) - this is the University's paramount policy on information access and security: it relates to both computer-based and paper-based information and defines the responsibilities of individuals with respect to information use and to the provision and use of information processing systems.
• Data Protection - the Act gives individuals rights over their personal data and protects them from the erroneous use of their personal data. The Act also requires anyone who handles personal data to comply with a number of important principles and legal obligations
• Acceptable Use Policy - these regulations apply to everyone using the University's computing facilities. In particular they apply to staff and students at the University, and to people outside the University who have been given permission to use the University's facilities.
• Policy for the Investigation of Computers - the University reserves the right to monitor an individual's use of the computing facilities and access data held on such facilities, or e-mail and other electronic data entering, leaving or within, the University's network in specific circumstances as laid out in this policy.
• Disposal of Computer Equipment - there are three main issues surrounding disposal of computer equipment, which are data protection, disposal of assets and protection of the environment.
• Copyright - this website sets out the details of licences that allow staff to copy material for educational purposes and gives advice on aspects of copyright not covered under the various licensing schemes.
• Freedom of Information - the Freedom of Information Act was introduced in 2005 to promote transparency in public bodies and introduced a public "right to know".

Any use of the Internet from (or via) the University network is also subject to:

• JANET Acceptable Use Policy
• JANET Security Policy