7. Information
If you handle personal, confidential or sensitive information, you must take all reasonable steps to safeguard it and must observe Staffordshire University’s Data Protection and GDPR Guidance, available at www.staffs.ac.uk/GDPR, particularly with regard to online storage, removable media, mobile and privately-owned devices. Any device used to access sensitive data must be up to date with security patches, must be configured to encrypt data, must have the screen locked when not in use, and must be physically secured at all times.
You must not infringe copyright or break the terms of licences for software or other material.
You must not attempt to access, delete, modify or disclose information belonging to other people without their permission, or explicit approval from Legal Services.
You must not attempt to create, download, store or transmit unlawful material, or material that is indecent, offensive, threatening or discriminatory. Staffordshire University has procedures to approve and manage valid activities involving such material available from the ‘College of Ethical Reviewers’ and schools Ethics Coordinators, which must be observed.
All electronic documents and data created during employment at the university are the property of the university. Upon leaving the university, staff members will lose access to university data and IT systems. Employees are prohibited from retaining any aggregated university data, including but not limited to copies of their mailbox or backups of their staff storage areas. It is the responsibility of all staff to ensure that no university information is removed or retained upon termination of their employment.