Accurate, timely, relevant, and properly protected information is a critical asset of Three Rivers College. The technology facilities and services provided by Three Rivers College, including computing, telecommunications, and media services, are primarily intended for teaching, learning, student support, and administrative purposes. Three Rivers College encourages staff and students to make appropriate and innovative use of such resources to further their learning.
The use of technology and information resources is governed by all applicable College faculty, staff, and student policies, as well as applicable federal, state, and local laws and statutes, including the Gramm-Leach-Bliley Act Safeguards Rule (GLBA).
The College has developed an Electronic Data Governance Operating Manual and a Data Security Team to help ensure the data of our staff and students remains safe, and to ensure that we are in compliance with GLBA and other applicable laws and statutes.
GLBA Objectives and Requirements
In compliance with the Gramm-Leach-Bliley Safeguards Rule and regulations issued by the Federal Trade Commission pursuant to that Rule, the College has established a Data Governance plan to:
- Ensure the security and confidentiality of customer information.
- Protect against anticipated threats to the security or integrity of customer information.
- Guard against unauthorized access to or use of customer information that could result in harm or inconvenience to any customer.
- Comply with applicable Gramm-Leach-Bliley rules as published by the Federal Trade Commission.
Consistent with its efforts to meet these objectives, the College will:
- Designate one or more staff members to oversee and coordinate the Data Governance plan.
- Conduct risk assessments to identify foreseeable internal and external risks that could lead to unauthorized disclosure or misuse of confidential information.
- Implement plans to control the risks.
- Contractually require third-party service providers to implement and maintain confidentiality safeguards.
- Periodically evaluate and adjust the Data Governance plan to ensure ongoing protection of confidential information.
Coordination of the Data Governance Plan
The following staff play a role in coordinating the various aspects of the Data Governance plan:
- The Chief Technology Officer/Data Security Officer coordinates the collegewide Data Governance plan, and along with the System Administrator and Network Administrator, assists areas in their security implementation.
- The Data Security Team, lead by the Chief Technology Officer, evaluates laws, statutes, and standards to ensure they are incorporated into the overall plan.