The University values openness and promotes access to a wide range of information; accordingly, the campus information systems have been designed to be as open as possible. This policy seeks to strike a balance between access to information, data integrity and appropriate confidentiality for University faculty, staff, and students.
Data Steward: Term used by the University of Wisconsin (UW) System Administrative Policy 1031 - Information Security: Data Classification and Protection to include "An individual who has direct responsibility to ensure that a data domain is classified appropriately. The data steward collaborates with institutional Security, Privacy and Data Officers." At UW-Whitewater, this responsibility is performed by the Data Owners.
Protected data: Any UW - Whitewater data and resources assigned a classification level other than public, as defined in the UW - Whitewater Instructional, Communication, and Information Technology (ICIT) Information Asset Classification Policy.
The reliability, availability and accessibility of University data is critical to the day-to-day function of the University. Each member of the University community (students, faculty, staff, and guests) and designated agents are expected to protect the integrity of data and to know and adhere to University rules, regulations and guidelines for its appropriate use. To that end, University information should be protected by acknowledging information custodial roles and responsibilities. Data owners, users and managers should each understand their particular roles in the custodianship of University data. By exercising appropriate custodial roles, appropriate due care of University information can be assured.
The University classifies data owners as those responsible for:
The University classifies data users as those responsible for:
The University classifies data managers as those responsible for:
ICIT facilitates the development of policies, and develops procedures and guidelines which enable University employees to understand their particular custodial roles and responsibilities with respect to University information. ICIT implements the technical infrastructure that allows University employees to efficiently and effectively exercise these custodial roles. ICIT also serves as the de facto data manager for most University data.
This document will be reviewed on an annual basis, or as deemed necessary.
|1/29/2018||Revised to include references to the requirements contained in the July 31, 2017 revisions of the University of Wisconsin System Administrative Policy 1031 - Information Security: Data Classification and Protection and the UW System Administrative Procedure 1031.A - Information Security: Data Classification documents.|
Operational Procedures define ICIT's services, expectations, and role as part of the campus community.