Strict new prohibitions about the storage of Social Security and credit card numbers were approved on Feb. 19 by the President’s Cabinet. The newly approved interim policy specifies that Metro State personnel will not be allowed to save Social Security or credit card data to laptop computers, PDAs, Smart Phones, USB drives, CD/DVDs or diskettes.

To reduce the threat of identity theft, access to student, alumni and employee information will be closely monitored. Only those individuals with written authorization will be allowed to access the Banner database, where the information is stored. Storage on a secured IT server outside the Banner database will require written permission from the employee’s area vice president and the vice president of information technology. When authorized, transmission of the data through e-mail will require that the data be encrypted.

Failure to comply could result in suspension of access and disciplinary action ranging from a warning to the initiation of civil or criminal proceedings. Suspected violations should be reported to the IT security and disaster recovery coordinator at 303-556-8325 or http://www.mscd.edu/~infotech/security/.

Watch for the “MetroProtect – Secure it” logo to notify the campus about ongoing important changes to information security policies. Questions should be directed to George Middlemist, interim vice president of Information Technology, 303-556-2441.