University at Buffalo (UB) 
Administrative Services Gateway
Administrative Services GatewayBuilding partnerships through collaboration
Protection of University Data Policy Revised
Published May 8, 2018 This content is archived.
The Protection of University Data Policy, approved and signed by President Tripathi, is available in the University Policy Library.
Overview
The University at Buffalo is committed to collecting, handling, storing, and using university data properly and securely. This policy establishes a framework of safeguards to:
- Protect university data from accidental or intentional alteration, theft, or other risks
- Comply with applicable laws and contractual requirements
- Increase awareness of the need to protect university data
Policy Revisions
The policy was revised to:
- Change the title from Protection of Regulated Private Data Policy to Protection of University Data Policy
- Update data role terminology
- Add HIPAA compliance reference
- Direct readers to Data Risk Classification Policy for data categories
Applicability
This policy applies to all university employees, students, and third-party vendors who access, manage, store, or in other capacities use university data.
For data regulated by the Health Insurance Portability and Act (HIPAA), refer to the applicable HIPAA policies or Director of UB HIPAA Compliance.
Guidance
Questions can be directed to the appropriate office.
| Contact | Phone | |
|---|---|---|
| Vice President and Chief Information Officer | 716-645-7979 | vpcio@buffalo.edu |
| Information Security Officer | 716-645-6997 | sec-office@buffalo.edu |
| Director of UB HIPAA Compliance | 716-829-3172 | hipaa-compliance@buffalo.edu |
| Records Management Officer | 716-645-5464 | hines@buffalo.edu |