30 Nova Southeastern University Student Handbook 1. Physical Storage of Student Records: Student records maintained in physical form are securely stored in designated areas that are only accessible to authorized personnel. These areas are monitored and protected by security systems to prevent unauthorized access, as well as alteration or destruction of records. Physical records are retained for the required retention period and are disposed of in a manner that ensures confidentiality. 2. Digital Storage of Student Records: Student records stored electronically are safeguarded through encrypted storage systems and secure-access protocols. The university employs industry-standard cybersecurity measures, including firewalls, multifactor authentication, and data encryption to protect against unauthorized access and data breaches. Only authorized personnel have access to sensitive student information, and access is granted based on a need-to-know basis. 3. Data Retention and Disposal: In compliance with applicable federal regulations, student records are retained for the duration required by law. After the retention period expires, records are securely destroyed through methods that ensure the confidentiality of student information, whether in physical or digital form. 4. Access Control and Security: Access to student records—whether physical or digital—is tightly controlled. The university uses role-based access controls to ensure that only personnel with the proper clearance and a legitimate need can access sensitive information. Digital records are also protected by secure passwords and encrypted data systems to prevent unauthorized access, modification, or loss. Additional information from the NSU Office of Records and Information Management is available at nova.edu/records. A.16 University Computer and Telecommunications Use Policy The following five sections detail NSU’s policy related to the use of computing and information technology resources, email, and the Internet. The information is available at nova.edu/portal/oiit/policies. Acceptable Use of Information Technology Resources and All Other Policies NSU’s Acceptable Use Policy provides guidelines for the appropriate and inappropriate use of the computing and information technology resources of NSU and can be found at nova.edu/portal /oiit/policies/forms/information-security-acceptable-use-policy.pdf. This policy applies to all users of the university’s information technology resources, including students, faculty and staff members, alumni, and guests of the university. Information technology resources include, but are not limited to, Internet/intranet/extranet-related systems, computing devices and related equipment, software, operating systems, storage media, network accounts providing electronic mail, Internet browsing, FTP data, local area networks, and listservs for which the university is responsible, as well as networks throughout the world to which the university provides computer access. NSU’s information technology resources are intended to be used for its programs of instruction and research and to conduct the legitimate business of the university. All users must have proper authorization for the use of the university’s information technology resources. Users are responsible for seeing that these computing resources are used in an effective, ethical, and legal manner. Users must apply standards of normal academic and professional ethics and considerate conduct to their use of the university’s information technology resources. Users must be aware of the legal and moral responsibility for ethical
RkJQdWJsaXNoZXIy NDE4MDg=