Information Security Policies

Geneseo Policies

• Access and Authorization to Information
• Confidential Information Policy
• Device Encryption Procedure
• Password Controls for Geneseo Accounts
• The Principle of Least Privilege
• Social Security Number Policy   

SUNY and State Policies

• NYS Office of Information Technology Services Security Policy
• SUNY Information Security Policy 6900
• Information Security Guidelines: Document 6608
• NIST Computer Security Division
• HIPAA Security Rule
• PCI Security Standards Council
• ISACA
• ISO, International Organization for Standards
• ISC2
• General Data Protection Regulation ("GDPR")

Related Forms

• Confidentiality Agreement
• Security Incident Reporting Form
• Social Security Number Request to Use Form