Office of Information Technology

Policies

Breadcrumb

Home
About

Policies

These documents are official policies of Brown University that are related to computing issues and have undergone a formal policy review process. They have been adopted to ensure an equitable, appropriate, and legal use of Brown resources.

You are therefore responsible for having reviewed the listed policies and for complying with their requirements. Violation of a computing-related policy may result in disciplinary action, up to and including suspension or termination.

Policies

Acceptable Use of Information Technology Resources Policy
Attribute Release Policy for Web Single Sign-On (SSO)
- Attribute Release Defaults for Web SSO ARP
Cellular Communication Devices Policy
- Annual Audit of Cellular Communication Devices 🔒
- Device Requests 🔒
- Exception Requests 🔒
- One-Time Cellular Communication Device Purchase 🔒
- One-Time Removal of Multiple Devices 🔒
- Transition of Number to Personal Use 🔒
Computing Accounts Management Policy
Computing Passwords Policy
Computing Privileges: Access to Electronic Services
Cyber Incident Response Policy
Data Risk Classifications (by Risk Level 1, 2 & 3)
Digital Millennium Copyright Act (DMCA) Compliance Policy
- Digital Millennium Copyright Act (DMCA) Compliance SOP 🔒
- Brown's Higher Education Opportunity Act Compliance Statement
- Brown's Copyright Ownership and Use Policy
- Copyright & Fair Use - Library Guide
- P2P Filesharing
Digital Signage Strategy and Protocol
Electronic Equipment Disposition Policy
- Data Removal Recommendations
Electronic Information Access Policy
- Email Access Requests 🔒
- File Services Access Requests 🔒
Email Policy
- Bulk Email Guidelines
Information Security Policy
Information Security Incident Response Team (ISIRT) Charge
IT Contract and Security Review Process
Network Connection Policy
- Guidelines for Extension of Network Services
Policy on the Handling of Brown Restricted Information
- Data Risk Classifications (by Risk Level 1,2 & 3)
  - Minimum Security Standards for Servers 🔒
  - Minimum Security Standards for Desktop, Laptop, Mobile, and Other Endpoint Devices 🔒
- Data Governance Roles and Responsibilities
- Checklists by Risk Classification Level for Endpoint Security Compliance
Security of Desktop, Laptop, Mobile and Other Endpoint Devices Policy
- Approved Department Management Systems 🔒
- Exception Process 🔒
- OIT Management Systems 🔒
Sponsored ID Management Policy
Telecommunications Services Policy
- Voicemail Policy
Vulnerability Management Standard 🔒
- Brown Vulnerability Management Service Level Agreement 🔒