Information Access Control Policy
To ensure the security and integrity of university data and information assets as well as safeguard the information of its constituents. All Kansas University technology resources will adhere to a uniform access control standard and framework.
University employees (faculty, staff, and student employees), students, and other covered individuals (e.g., affiliates, vendors, independent contractors, etc.) in their access to University resources and software applications during the course of conducting University business (administrative, financial, teaching, research, or service).
All devices and software applications that are connecting to the University network shall provide user authentication and access control via the approved Kansas University Access Control Procedures only. Validation of identity management protocols resides with the KU Information Technology Security Office.
Exceptions to this Policy and associated Procedures shall only be allowed if previously approved by the KU Information Technology Security Office and this approval is documented and verified by the Chief Information Officer.
Faculty, staff, and student employees who violate this University policy may be subject to disciplinary action for misconduct and/or performance based on the administrative process appropriate to their employment.
Students who violate this University policy may be subject to proceedings for non-academic misconduct based on their student status.
Faculty, staff, student employees, and students may also be subject to the discontinuance of specified information technology services based on the policy violation.
Office of the Chief Information Officer
1001 Sunnyside Avenue
Lawrence, KS 66045
01/26/2022: Updated contact section.