Skip to Content

Information Security Office
Policy Index
Policy Enforcement
CSU Policy
Number: 8095.0 Revised: April 19, 2010

Policy Objective

The CSU Information Security policy provides direction and support for enforcing the CSU Information Security Policy.

Policy Statment

The CSU respects the rights of its employees and students. In support of the CSU Information Security policy, campuses must establish procedures that ensure investigations involving employees and students suspected of violating the CSU Information Security policy are conducted in compliance with appropriate laws, regulations, collective bargaining agreements, and CSU/campus policies. Additionally, campuses must develop procedures for reporting violations of this policy.

The CSU reserves the right to temporarily or permanently suspend, block, or restrict access to information assets, independent of such procedures, when it reasonably appears necessary to do so in order to protect the confidentiality, integrity, availability, or functionality of CSU resources or to protect the CSU from liability.

Allegations against employees that are sustained may result in disciplinary action.  Such actions must be administered in a manner consistent with the terms of the applicable collective bargaining agreement and the California Education code.  Student infractions of the CSU Information Security policy must be handled in accordance with the established student conduct process. Auxiliary employees who violate the requirements of the policy may be subject to appropriate disciplinary actions as defined by their organization's policies.  Third party service providers who do not comply with this policy may be subject to appropriate actions as defined in contractual agreements and other legal remedies available to the CSU.

The CSU may also refer suspected violations to appropriate law enforcement agencies.

Back to the Sacramento State Information Security Policy Website