University employees with access to confidential information are responsible for its security. Following are some guidelines:
- Confidential information should be locked in a file cabinet or desk drawer when not in use.
- Confidential information should never be left unattended. This includes computer desktop devices, which must be signed off when unattended.
- Computer passwords must be kept secret, must not be stored in computer files or libraries, must not be shared, nor left near computer terminals, on cabinets, or on bulletin boards.
- Confidential information is to be used for authorized purposes only.