Compliance

The ESS Division of Information Protection and Security is committed to providing department personnel with clear and accessible information on how to comply with federal and state legislation. University departments are responsible for the security, confidentiality and integrity of data covered by legislation that if unsecured, could result in unauthorized disclosure, misuse, alteration, destruction or other compromise.

Digital Millennium Copyright Act — last modified 2007-07-27 11:28

Rutgers complies with the Digital Millennium Copyright Act.

Gramm-Leach-Bliley Act (GLBA) — last modified 2007-07-27 11:28

The Gramm-Leach-Bliley Act (GLBA), includes provisions to protect consumers personal financial information held by financial institutions. Under GLBA it is the obligation of the University to establish appropriate standards for areas under its jurisdiction relating to administrative, technical, and physical safeguards.

Health Insurance Portability and Accountability Act (HIPAA) — last modified 2007-07-27 11:28

If you have medical information and you bill electronically you are subject to the HIPAA requirements.

New Jersey Identity Theft Prevention Act — last modified 2008-01-08 06:48

The New Jersey Identity Theft Prevention Act mandates notification in the event of a security breach.

Payment Card Industry (PCI) — last modified 2007-07-27 11:28

Payment Credit Card Industry (PCI) Data Security Requirements If you take Credit Cards, you have a contractual obglication to comply with the PCI Security Standards.

Student and Exchange Visitor Information System (SEVIS) — last modified 2007-07-27 11:28

 

Cisco Presentation: Best Practices for Managing Security and Compliance — last modified 2007-10-08 11:40

A National Cyber Security Month recognition presentation