Sensitivity: Sensitivity is the degree of adverse effect a compromise of confidentiality, integrity or availability would have on Commonwealth of Virginia interests, the conduct of university programs or the privacy to which individuals are entitled.
The Vice President for Strategic Operations oversees this policy. Information Technology Services (ITS) is responsible for monitoring compliance with the policy and taking any necessary corrective action.
The purpose of this policy is to identify how the sensitivity of the university's data will be classified.
University data owners, as defined in the Security Roles and Responsibilities policy, will be responsible for identifying all types of data handled by the university and classifying the sensitivity of the data. In determining the sensitivity of the data the requirements of federal, state and local laws must be considered.
Data Handling Standards and Electronic Data Disposal Standards are associated with this policy. Related policies, standards and guidelines may be maintained internally by Information Technology Services.
The university regards any violation of this policy as a serious offense. Violators of this policy are subject to disciplinary action, in addition to possible cancellation of IT resources and systems access privileges. Users of IT resources and systems at Longwood are subject to all applicable local, state and federal statutes. This policy does not preclude prosecution of criminal and civil cases under relevant local, state, federal and international laws and regulations.
Approved by the Board of Visitors, December 5, 2008
Revised and approved by the Board of Visitors, September 11, 2009
Revised and approved by the Board of Visitors, March 25, 2011
Updated, December 13, 2019