This policy outlines the handling, responsibilities, and scope of the Information Technology (IT) resources of Western Nebraska Community College. Among the services provided are various information technology resources, including office/classroom computing equipment, distance learning system/computer laboratory/multimedia equipment, and network/Internet access and security. Regular employees and, where appropriate, currently enrolled students are encouraged to make use of these resources for educational purposes.
Every user has two fundamental rights: privacy and fair access to the resources.
It is the College's intent to provide basic, on-campus information technology facilities for all faculty, students, and appropriate staff.
All users of College information technology resources are responsible for seeing that these resources are used in a safe, effective, ethical, and lawful manner. Adherence to the following guidelines is the responsibility of each user of any information technology resource:
Respect the intended purpose of the Colleges information technology resources.
College IT resources are intended for use in a professional manner. Use should always be for purposes of or in support of education or other College related activities.
Users should never knowingly violate federal, state or copyright laws.
Transmission of any material that violates these laws is prohibited. This includes, but is not limited to: transmission of copyrighted material, material protected by trade secret, or threatening, harassing, or obscene material.
College information technology resources should not be used for commercial ventures or for personal or political gain.
Use of IT resources for outside business or political lobbying is prohibited.
Use of College information technology resources in a manner that interferes with or disrupts network users, services, or equipment is not acceptable.
Such interference or disruption includes, but is not limited to:
Utilizing programs which impede the performance of College computing or network resources.
Using an unfair share of resources, including server space and bandwidth.
Distribution or execution of any program or file that damages another user's files.
Access and/or use of data, resources, or equipment without first obtaining proper authorization by all impacted areas.
Attempts to gain administrative rights to any system.
Attempts to discover another user's password to any system.
Allowing another individual access to information technology resources by sharing user names/passwords is prohibited. Usernames and passwords are the entry points to college information systems. Protecting access to college resources is pivotal in creating and maintaining security. College systems contain sensitive data including student records, so employees must be diligent in guarding access to these resources and protecting them from threats both inside and outside the institution.
All server access is tracked via usernames. When establishing network or Internet accounts, each user is provided a username with a user modifiable password.
Each user is responsible for the proper use of any account, including password protection and the prevention of use of the account by all others (including family members).
If a user needs additional privileges to system resources, the immediate supervisor should request the access through appropriate means.
Each user shall follow published College approved procedures for the use of office computers, multimedia equipment, Internet resources, distance learning systems, computer laboratories and (local/wide area) networks.
Individual departments and administrative units may define additional conditions of use for the areas under their supervision. Any such additional conditions must be consistent with this overall policy but may include more detailed guidelines and, where necessary and appropriate, additional restrictions as formulated by the College president.
Privacy and Security
Electronic student and employee records and files are confidential unless they have explicitly been made available to other authorized users. Justifiable need to know must be present prior to accessing any data. Information viewed through the access of electronic records must be held in the highest confidence.
Computer programs and files are confidential unless they have explicitly been made available to other authorized users. Unauthorized copying, renaming, modifying, examining, or deleting computer files belonging to someone else on a shared directory is unacceptable. Files users prefer to keep confidential should be stored in a non-network location.
College information technology staff may access user files when necessary for the maintenance of computing facilities. When performing maintenance, every effort will be made to insure the privacy of user's files.
The College cannot guarantee the privacy or confidentiality of any computer-based communication. Therefore, the College requests that all users of computer-based communication using College systems refrain from sending or receiving confidential or private information as a routine procedure.
The College reserves the right to inspect, copy, store, and disclose the contents of computer-based communication at any time. It will only do so when it is believed to be appropriate to prevent or correct improper use, to satisfy a legal obligation, or to maintain proper operation of computer systems.
The College cannot be responsible for the loss of information from misuse, malfunction or contamination. While the College will make every effort to insure the integrity of all computing resources and information stored thereon, all systems are subject to unanticipated events that can cause data loss. All users are strongly advised to create frequent backups of important documents.
User Conduct
Users have the responsibility to be familiar with this Information Technology Resource Policy and any related policies and procedures published by those who supervise the use of the equipment and facilites.
Violation of these policies and procedures, or any College policy or regulation, may result in limitation or suspension of the users privileges and may also result in additional disciplinary actions.
