Information Security Management and Compliance
Records Management Standard
- References: CSU Records Access Manual
- CSU Subpoena Handbook
- CSU Executive Order 1031, Systemwide Records/Information Retention Schedules
- Government Code Section 6250-6270
- Fair and Accurate Credit Transactions Act of 2003 (FACTA); FCRA, 15 U.S.C. 1681 et seq.
- California Civil Code §1798.81
- Issue Date: September 2008
- Revision Date: October 2011
- Expiration Date: N/A
INFORMATION PROTECTION
Information must be protected when handled, transmitted, stored, and disposed based on its classification level. Safeguards to protect university information assets are found in Attachment B – Information Protection Requirements.
Roles and Responsibilities
Roles and responsibilities associated with information protection are as follows:
Information Custodians are responsible for ensuring that access to and protection of information and the file systems that host them are in compliance with this Standard.
Standard Contents
Policies
- Home
- Acceptable Use of CSULB Electronic Communications Systems and Services
- Confidentiality of Medical Information
- Copyright and Fair Use
- Information Security Policy
- Preservation and Production of Records
- Accepting Payment (Credit) Card
Standards and Procedures
- Home
- Clean Desk and Clear Screen Standard
- Electronic Data Security-Portable Devices and Removable Media
- Electronic Media Sanitization Procedure
- Identity Theft Prevention Program
- Password Standard
- Protecting the Confidentiality of Social Security Numbers
- Records Management Standard
- Security Incident Reporting and Breach Notification Plan
- Third Party Agreements / Confidential Information