Data Governance Policies and Standards

Policies are ECU’s stance on how we comply with state, federal and international rules and regulations.

Federal and state regulations affect how data should be secured so as to avoid unauthorized disclosure, misuse, alteration, destruction or other compromise of sensitive data. University departments are responsible for the security, confidentiality and integrity of data covered by legislation.

ECU Regulations or Standards

Data Classification Standard Data Governance Regulation Data Governance Steering Committee Procedures Data Stewardship Committee Processes and Procedures Data Stewardship Committee Communication Plan Guidelines for Protecting Sensitive Data Mobile Computing Regulation Regulation for the Use of Generative Artificial Intelligence (AI) Systems with Institutional Data Research Data & Records Sensitive Data Storage and Transmission Shadow Systems Control Standard Social Security Numbers (SSN) and Personal Identifying Information (PII) Regulation Software Acquisition Regulation Termination Report Access for User Access Control User Access Control Rule
Federal or State Regulations

EU General Data Protection Regulation (GDPR)Family Educational Rights and Privacy Act (FERPA)Federal Information Security Management Act (FISMA)Gramm-Leach Bliley Act (GLBA)Health Insurance Portability and Accountability Act (HIPAA)The Privacy of State Employee Personnel Records [NC General Statute – A7 126-22, Article 7]Payment Card Industry Processing Compliance (PCI)Sarbanes-Oxley Act