Document search
Fully-matching results
-
Travelling with technology
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/travelling-with-technology.pdfGuidance for securing technology whilst travelling…
-
Supplier remote access requirements
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/supplier-remote-access-requirements.pdfManaging secure access to internal systems by third parties…
-
Cyber risk levels
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/cyber-risk-levels.pdfDefine the cyber risk levels that are used to describe vulnerabilities.…
-
Vulnerability testing process
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/vulnerability-testing.pdfGuidance on when and how systems should be tested for security vulnerabilties…
-
Best practice for device connectivity
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/best-practice-device-connectivity.pdfDocument outlining the best practice for securing devices connecting to the University network…
-
University cyber incident and data breach management procedure
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/university-cyber-incident-and-data-breach-management-procedure.pdfProtocol for managing suspected cyber/personal data breach…
-
Records Management Policy
https://www.st-andrews.ac.uk/policy/information-governance-and-management-records-management/records-management-policy.pdfTo provide direction on how University records are to be managed to preserve their value.…
-
Electronic data destruction and media disposal policy
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/data-destruction-policy.pdfThis policy covers the destruction of electronic media that stores or has stored, University-owned data as defined within the Information Classification Policy…
-
Maintaining the security of credit & debit card data - policy
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/maintaining-the-security-of-credit-&-debit-card-data----policy.pdfPolicy to cover PCI-DSS compliance (credit / debit cards)…
-
University Privacy notice: collection and use of employee personal data
https://www.st-andrews.ac.uk/policy/information-governance-and-management-data-protection-privacy-information/staff_privacy_notice.pdfTo advise people how their personal data are used by the University…
-
Access to information during periods of staff absence
https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/access-to-information-during-periods-of-absence.pdfThis Policy defines the circumstances under which access to information held in email and files can be made during periods of absence, for business continuity purposes.…
-
Requests for personal data by the Police or a similar third party for the purposes of the prevention or detection of crime, apprehension or prosecution of offenders, or for taxation
https://www.st-andrews.ac.uk/policy/information-governance-and-management-data-protection-sharing-personal-data-with-third-parties/release-of-personal-data-for-crime-prevention.pdf -
Maintaining the security of credit & debit card data - policy
Password protected https://www.st-andrews.ac.uk/policy/information-governance-and-management-information-security/internal/maintaining-the-security-of-credit-&-debit-card-data---policy.pdfPolicy to cover PCI-DSS compliance (credit / debit cards)…
-
Data governance policy
https://www.st-andrews.ac.uk/policy/information-governance-and-management-data-governance/data-governance-policy.pdfThe purpose of this policy is to describe the University’s approach to data governance in terms of data availability, data accessibility and data quality and to outline how clear accountability for each is managed.…