ABOR Policy 9-202F states that, "Each university shall establish an Information Security Committee. The Committee will review and recommend information security policies and standards, and provide guidance and support to the Information Security Officer or Information Security Director for the implementation and maintenance of the Program."
ABOR Policy on Information Security
A.R.S. 18-552 - Arizona Data Breach Notification Statute
The following is the Arizona State Statute regarding notification requirements in the event of a data breach involving personal information. Please note that any breach, suspected breach, or suspected loss of data should be reported through the Information Security Incident Response process
A.R.S. 38-448 - State employees; access to internet pornography prohibited; cause for dismissal
Arizona law allows for the dismissal or discipline of state employees who use state-owned equipment to view material or services that depict nudity or sexual activity, unless the employee has the authorization of the agency head. The statute governs all ASU employees, including student employees.
A.R.S. 13-2316 - Computer Tampering
Arizona law considers the tampering with of state computer systems to be a class 3 felony. This includes "[a]ccessing, altering, damaging or destroying any computer, computer system or network" with malicious intent or using state networks or computer systems "recklessly."
U.S. State and Territory Data Breach Notification Laws
Forty-eight states, the District of Columbia, Guam, Puerto Rico and the Virgin Islands have enacted legislation requiring private or governmental entities to notify individuals of security breaches of information involving personally identifiable information. For a listing of all forty-eight states, the District of Columbia, Guam, Puerto Rico and the Virgin Islands legislation requiring private or governmental entities to notify individuals of security breaches click here.