Many articles within the literature point to the information security policy as one of the most important elements of an effective information security program. Even though this belief is continually referred to in many information security scholarly articles, very few research studies have been performed to corroborate this sentiment. Doherty and…

To whom should higher education institutions provide data, and what is the impact of transparency on institutions?

This "Just in Time" research is in response to recent discussions on the EDUCAUSE Higher Education Information Security Council (HEISC) discussion list about data breaches in higher education. Using data from the Privacy Rights Clearinghouse, this research analyzes data breaches attributed to higher education. The results from this…

This case study examines patron record privacy and the Family Educational Rights and Privacy Act (FERPA) within a consortial environment. FERPA requirements were examined, as well as college and library policy and procedure. It was determined that information in library patron records is directory information and, under most circumstances, does…

States and students are increasingly turning to online education programs to provide access to postsecondary education and support credential completion. Recent data indicate that more than 25 percent of postsecondary students take some portion of their coursework online, with 13 percent of students doing so exclusively. Additionally, an…

In higher education, the IT department is often the service provider for the institution's emergency notification system (ENS). For many institutions, the complexity of providing emergency notification to students, faculty, and staff makes using a local, on-premise solution unrealistic. But finding the right commercially hosted technical solution…

Recent changes in Canadian copyright law have prompted Canada's educational institutions to reexamine their need for a blanket copying license. Users' rights under the amended Copyright Act now include fair dealing for purposes of education, and the Supreme Court has established that copying short excerpts for classroom use can qualify as fair…

The January 2014 edition of the ECAR Update subscriber newsletter included an informal poll on information privacy practices. The poll was intended to collect a quick snapshot of the higher education community's thoughts on this important topic during Data Privacy Month. Results of the poll will be used to inform EDUCAUSE research, programs,…

The expanding scope of IT initiatives in higher education institutions now goes well beyond basic desktop and enterprise applications. IT is often asked to focus on efforts to establish good information-governance practices. The many aspects of information governance are often found in a records and information management (RIM) program, but not…

Since September 2016, "relevant higher education bodies" have been subject under the Counter Terrorism and Security Act 2015 to a statutory duty to have due regard to the need to prevent people from being drawn into terrorism. In doing so, they must have particular regard to their existing duties to ensure freedom of speech and consider…

Bullying is a social problem. The proliferation of electronic technology has provided a new forum for bullies to harm victims. That is, bullies can transmit harmful text messages, photos, or video over the Internet and other digital communication devices to victims. This malpractice of technology-oriented phenomenon known as cyberbullying has…

The authors discuss the long-term accumulation of unstandardized and inaccessible content within the Libguides system and the decision-making process to create and implement a set of standards using the migration to the LibGuides2 platform as a vehicle for change. Included in the discussion are strategies for the creation of standards and…

Adhering to laws whilst working or studying in an educational establishment is often fraught with challenges. The Irish Data Protection Act 1988 (Amendment 2003) strives to protect the individual where their personal data is potentially being abused. The advancements in technologies have facilitated educational establishments by improving…

Often, users of information systems (both automated and manual) must analyze those systems in a "black box" fashion, without being able to see the internals of how the system is supposed to work. In this case of business process outsourcing, an insurance industry customer encounters an ongoing stream of customer service issues, with both…

The purpose of this research is to identify the students' perceptions of social media use in a classroom setting. Knowing students' perceptions of social media can help the instructor build a course that both student and teacher can find effective. Using focus groups this study found a model to determine if social media is an appropriate or…