Business and Financial Policies and Procedures
 

All Business Systems Access and Security Policies

Business Financial Information

The University of Illinois owns all information (data, programs, and procedures) gathered, stored, or maintained for business purposes, unless otherwise stated in a contractual agreement. This ownership includes all University information regardless of location or media (for example, disk, laptop, paper documents, and PDAs).

University units have unlimited, read-only access to most business information, but must follow the standard access approval process that includes Unit Security Contacts, the OBFS Finance Security Team, and Administrative Information Technology Services (AITS).

Anyone accessing University business information assumes a legal and ethical relationship (fiduciary responsibility) regarding that information. Such information is to be used only for conducting University business.

Unit heads are responsible for the security of University data used by their unit.

Red Flags Rule

The University is subject to and complies with the Federal Trade Commission (FTC) Identity Theft Red Flags Rule, which is a component of the Fair and Accurate Credit Transactions Act of 2003.

The Rule protects individuals from identity theft by requiring financial institutions to identify “red flags,” which are defined as a pattern, practice, or specific activity that suggests identity theft might have occurred. It applies to the University of Illinois wherever we administer the types of accounts covered by the Rule.

If your unit enters, alters, or maintains personally identifying information, such as name, birth date, address, phone number, gender, social security number, NetID, Enterprise ID, e-mail address, and UINs, you must comply with the Rule’s requirements.

If the Red Flags Rule applies to your unit, you must have procedures in place to detect, prevent, respond to, and lessen the effects of identity theft for accounts covered by the Rule.

University units should verify identity for in-person services to safeguard their customers and the University.

 

Last Updated: October 21, 2011 | Approved: Senior Associate Vice President for Business and Finance - January 2002