Office of Information Technology

Policies and Legislation

University Policies 

12.1 Intellectual Property Policy

Policy which specifies the rights and obligations of both an individual (Faculty, Administrator, Student, or Staff) and the University with regard to intellectual property 

12.2 Copyright Policy

Policy which states the University’s compliance with federal copyright laws 

12.3 Information Technology and Communications Policy

Rules which govern the appropriate use of SMU information technology and network resources. 

12.4 Electronic Payment Processing Policy

Outlines the methods by which University departments may participate in electronic commerce, and how personal information must be protected during transactions. 

12.5 Information Security Policy

Defines the basic security measures and controls for managing information and technology at SMU. 

12.6 Password Management Policy 

Defines the University’s power to regulate and manage passwords at SMU, and outlines the responsibilities for password management.

Federal Regulation 

The Family Educational Rights and Privacy Act (FERPA)

FERPA protects the privacy of students' education records by enforcing limitations on the release of student information. Particularly sensitive information includes students' Social Security numbers, race or ethnicity, gender, nationality, academic performance, disciplinary records, and grades. Find out more about SMU's FERPA policy at www.smu.edu/registrar/ferpa. The latest on FERPA can be found on the U.S. Department of Education's FERPA page at  www.ed.gov/policy/gen/guid/fpco/ferpa/

Health Insurance Portability and Accountability Act of 1996 (HIPAA)

HIPAA is a federal law comprised of regulations that establish and protect patient rights and disseminate standards for the protection of individually identifiable health information. Find out more about HIPAA at www.hhs.gov/ocr/privacy/

Gramm-Leach-Bliley Act (GLBA)

GLBA sets forth key provisions on the collection and disclosure of consumer's personal financial information, such as bank account numbers. Find out more about the Gramm-Leach-Bliley Act at www.ftc.gov/privacy/privacyinitiatives/glbact.html

FACTA Red Flags

The Federal Trade Commission (FTC) in conjunction with several other agencies set out a list of guidelines, collectively called the Red Flag Rules, that regulate how Universities will address potential incidents of Identity theft. Find out more about Red Flags at ftc.gov/opa/2007/10/redflag.shtm

State Regulation

Texas 78(R) SB 473 

Texas 78(R) SB 473 relates to assisting consumers to both prevent and detect identity theft, and providing penalties. The Act can be reviewed atcapitol.texas.gov/billlookup/text.aspx?LegSess=78R&Bill=SB473.

Texas 79(R) SB 122 

Texas 79(R) SB 122 relates to the prevention and punishment of identity theft, the rights of certain victims of identity theft, and providing penalties. The Act can be reviewed at capitol.texas.gov/billlookup/text.aspx?LegSess=79R&Bill=SB122.

Texas Penal Code 7.33 

Texas Penal Code 7.33 is a criminal statute regarding Computer Crimes. The code can be reviewed at statutes.capitol.texas.gov/docs/PE/htm/PE.33.htm.

Texas Penal Code 32.51 

Texas Penal Code 32.51 is a criminal statute regarding Fraudulent Use or Possession of Identifying Information. The code can be reviewed at statutes.capitol.texas.gov/Docs/PE/htm/PE.32.htm#32.51.