Security Laws

In addition to the federal regulations such as FERPA, the Commonwealth of Massachusetts has adopted a new data security law (Chapter 93H of the Massachusetts General Laws of 2007) that requires all personal Information to be protected from un-authorized disclosure by applying appropriate security controls.

a. Personal Identifiable Information (PII):

PII is defined by Massachusetts law as a person's first name and last name or first initial and last name in combination with one or more of the following:

• Social Security Number
• Driver's License Number or state-issued Identification Card Number
• Financial account number, or credit or debit card number

c. Academic and Educational records (FERPA):

This law protects the privacy of student's educational records.

In order to meet the requirements of the Information Security Policy to protect confidential information while complying with federal and state regulations, Information Technology department has identified new tools and standards as listed under Information Security Web Page.

For any questions regarding the new data security law and tools, please call the Help Desk at HELP (x4357) or email helpdesk@stonehill.edu .