Do you often feel like you have no control over your own privacy, online or otherwise? Do you worry that your personal information is not as private as you would like it to be? Would you like to learn more about how to protect your data and keep it private? If so, then you will be excited to learn that January is Data Privacy Month!
Data Privacy Month empowers, encouages, and engages people to protect their privacy and manage their digital online presence and information. This annual event instills awareness and education about the many ways and methods personal information is collected, stored, used, and shared, and what precautions individuals as owners of the data can use to protect it. For more information on Data Privacy Month, visit www.dataprivacyday.org.
NDSU has developed online materials and face-to-face presentations to promote awareness and education for this important topic. Be sure to attend one of the presentations! EDUCAUSE is hosting weekly webinars, each with a theme unique to data privacy. Take time out of your busy day to watch one! More information on the NDSU presentations and EDUCAUSE webinars is listed below.
NDSU Data Research Working Group Data Presentation
- Got Data? Now What? Best practices for managing data
Take part in this face-to-face presentation to learn simple and practical strategies and tools available at NDSU to help you actively manage and protect your data.
Tuesday, January 15, 9:30 to 10:30 am, Arikara Room, Memorial Union, NDSU main campus
Wednesday, January 17, 2 to 3 PM, Arikara Room, Memorial Union, NDSU main campus
Hosted and presented by the NDSU Data Research Working Group
To learn more, visit NDSU's data research page.
Webinars on Data Privacy, 2013 Data Privacy Month Themes" hosted by EDUCUAUSE
- Week 1, January 7-11: Privcy and Your Mobile Devices
EDUCAUSE Live! webinar: Are You Smarter Than Your Mobile Phone?
Wednesday, January 9, Noon to 1 PM with Rebecca Herold, the Privacy Professor
Nearly everyon on a college campus toda has a mobile phone, but how should you make use of your smartphone?
To find out more about the webinar, and to register for the event, click here.
- Week 2, January 14-18: Privacy and Institutional Data
IAM Online Webinar: Scalable Privacy: An NSTIC Grant for the Identity Ecosystem
Wednesday, January 16, Noon to 1 PM with Ken Klingenstein, Director, Middleware Initiative, Internet2)
The U.S. Department of Commerce's National Institute of Standards and Technology (NIST) recently announced more than nine million dollars in grant awards to support the National Strategy for Trusted Identities in Cyberspace (NSTIC). Want to learn more? Click here.
- Week 3, January 21-25: Privacy in the Cloud - What's Going On Up There?
Mega uploads of data, including sensitive data, is being kept in the "cloud" both on behalf of institutions, and of individual users. There is a large gap between what we do, and our understanding of how our data and actions are safeguarded. Click here for more information for when this webinar will be held.
- Week 4, January 28-February 1: Privacy and Social Media
EDUCAUSE Policy webinar: It's Not Just Facebook! - What Every College Student Should Know About Online Privacy
Wednesday, January 30, Noon to 1 PM with host Merri Beth Lavagnino, Chief Privacy Officer and Compliance Officer, Indiana University
This week is focused on giving real examples of how your social media data is used by busineses, potential employers, colleges, and universities. Learn what new developments are happening that affect college students,and what choices are available. Click here to register for the webinar and to learn more about this ever changing ecosystem.
The policy of the North Dakota State University Information Technology Division is to respect the privacy of all users of information technology services. This electronic privacy statement is intended to inform the The Division of IT clients of our information gathering and usage practices.
North Dakota University System Policy and Procedure, 1901.2, NDSU Policies and Procedures 158 and 710, federal and state laws, and the NDSU Information Technology Services Confidential Information Agreement take precedence over this privacy statement.
Use of Information:
Electronic records needed to support The Division of IT functions are retained, managed, and accessible in accordance with established records disposition authorizations to the extent permitted or authorized by law. Electronic records will be identified, managed, protected, and retained as long as they are needed to meet administrative, fiscal, or legal requirements.
Information Safeguarding:
Information security is an area of major concern in higher education; without it, an institution's private data and intellectual property could be compromised.
NDSU must continually reassess the threats and risks to private data, confidential information, and intellectual property, creating a secure electronic information environment on campus. Information safeguarding requires participation from everyone in the campus community and leadership at all levels, especially in the areas of policies, procedures, governance, and infrastructure. Information security, in today's world, is everyone's responsibility, just as it is to work safely in the workplace. Individual privacy rights and open access to information must be protected as much as legally and practically possible.
Public Disclosure:
Electronic records stored and received by The Division of IT are subject to the access and confidentiality provisions of state and federal law. ITS provides security and privacy for information stored and received on its systems and services. In addition, the following information provided to us is protected from disclosure to the public: personal, copyright, research, trademark, and proprietary information; unless otherwise specified by the owner. Information not specifically addressed in this document may be disclosed pursuant to the North Dakota Open Records Law.
North Dakota law specifies in NDCC Ch.44-04-18 that "Except as otherwise specifically provided by law, all records of a public entity are public records, open and accessible for inspection during reasonable office hours." All information provided to, stored, or collected electronically that is not specifically exempted by state or federal law should be considered as an "open record" and may be released upon any request of the public.
Network Traffic Logs:
In the course of ensuring network security and consistent services for all clients, we employ software programs to do such things as monitor network traffic, identify unauthorized access to nonpublic information, enforce access rights and user quotas, detect computer vulnerabilities, and other software that might damage university computers. In the course of such monitoring, the information detected from these activities is used only for monitoring for compliance with law and policy and for the purpose of maintaining the security and performance of NDSU's networks and computer systems. Personally identifiable information from these activities is not released to any party without consent unless required or authorized by law.
Desktop Services:
In the course of ensuring network security and consistent services, it may be necessary to audit NDSU owned desktops regarding:
- Operating system installation and maintenance.
- Hardware installation, repairs, and upgrades.
- Software licensing, application installation and configuration.
In the course of such an audit, personal, copyrighted, research, trademarked or proprietary data on the client's machine will not be purposely or intentionally reviewed unless there is valid and/or legal reason to do so.
Remote Desktop:
The Desktop Support Team may install and maintain an application that will enable efficient and remote management and maintenance of the user's desktop. The application may also be used for the followi
- Remotely turn computers on and off.
- Automatically update antivirus definitions.
- Edit the system registry.
- Automatically update the computers operating system.
- Inventory hardware and software.
- Install and remove software applications automatically.
At no time will personal, copyrighted, trademarked, proprietary, or research data on the client's machine be reviewed unless there is valid and/or legal reason to do so.
Server Logs:
The Division of IT servers routinely collect and store information from online visitors to facilitate management and improve service of those server and services. This information may include Web pages visited, the date and time of the visit, the Internet address (URL or IP address) of the referring site, the domain name and IP address from which the access occurred, the version of browser used, the capabilities of the browser, and search terms used on the search engines. We make no attempt to identify individual visitors from this information; no personally identifiable information is released to external parties without consent unless required or authorized by law.
Cookies:
Cookies are pieces of information stored by the Web browser on behalf of a Web site and returned to the Web site on request. The NDSU Web site(s) may use cookies for two purposes: to carry data about the current session at the site from one Web page to the next, and/or to identify to the site between visits. The cookie setting may be turned off in the computer's browser, or the browser may be set to send a request to the client prompting the client to accept the new cookie. Some pages may not function properly if the cookies are turned off. Unless otherwise notified on the NDSU Web site, The Division of IT will not store data, other than for these two purposes, in cookies. Cookies remain on the computer. ITS does not store cookies or forward them to any external parties. Unless otherwise noted on the Web site, NDSU does not use cookies to track movement among different Web sites and does not exchange cookies with other entities.
NDSU provides links to other World Wide Web sites or resources. NDSU does not control these sites and sources, does not endorse them, and is not responsible for the availability, content, or delivery of services. In particular, external sites are not bound by NDSU's electronic privacy policy.
Collection of Information:
The Division of IT uses the collected information to respond appropriately to requests. Survey information collected may be used statistically to help us understand usage patterns and forecast requirements.
Information Voluntarily Provided by Clients:
In the course of using the NDSU Web site, the you may choose to provide us with information to help us serve you. Personally identifiable information will only be used for the purpose indicated. Requests for information will be directed to the appropriate staff, and may be recorded to help us update services to better serve your requests. We will not sell, exchange or otherwise distribute personally identifiable information without prior authorization except to the extent required or authorized by law. We also will not retain the information longer than necessary for normal operations. The purpose for all information will be disclosed through the appropriate media form.
1-18-2013
Facebook Releases Graph Search
This new tool from Facebook is a very powerful search engine based on Like, Tags, and Check-ins of its members, while this may make finding intrests of your friends a little easier, it may also be used by others for phishing and other nefarious types of attacks. As you should with all of your social media accounts, please check your privacy settings often.
Click here for more details
11-14-2012
Microsoft Releases Security Patches
Microsoft, yesterday, released six security patches including the first patch to their new operating system Windows 8. Four of the patches released are listed as critical, as the vulnerabilities that are patched could allow an attacker to remotely execute code. These should be patched as quickly as possible.
Click here for more details
11-06-2012
PC Security: Your essential software toolbox
Mobile malware is getting lots of attention these days, but you can’t forget about your PC’s security—after all, you probably still use it to pay bills, shop online, and store sensitive documents. You should fully protect yourself to lessen the chance of cybercriminals infiltrating your computer and your online accounts, capturing your personal information, invading your privacy, and stealing your money and identity.
Click here for more information.
