OIS: Policy

There are various laws and policies that govern information security at TAMUCC.

1. General Information Security Laws and Policies

TAMUCC Rules and Procedures

The University's Rules and Procedure regarding information resources are found in Section 29.  These policies apply to only TAMUCC.

A&M System Policy and Regulations

Section 29 contains policy regarding information resources.  These policies govern all A&M institutions.

Texas Administrative Code, Chapter 202 ("TAC 202")

This is the key Texas state law regarding information security.  Much of System and TAMUCC policy is derived from TAC 202.

Summary of Information Security Responsibilities of All Users

Not itself a policy, but a summarization of key provisions of TAC 202, System, and TAMUCC policy that apply to all users of TAMUCC information resources.

2. Specialized Information Security Laws and Policies

Higher Education Opportunity Act ("HEOA")

Family Educational Rights and Privacy Act ("FERPA")

FERPA is a federal law governing the handling of certain types of student information, especially grades.

Red Flags Rule "RFR"

The Red Flags Rule is a federal standard that aims to prevent identity theft.

Payment Council Industry ("PCI")

PCI is a set of standards put forth by the credit card industry.  TAMUCC business units that conduct credit-card transactions must comply with the PCI Data Security Standard, or PCI-DSS.

Support Information 

Please contact the Information Technology Help Desk at x2692 for additional assistance.