Information is one of the university's most valuable assets, and its value is increased through widespread and appropriate use. The university grants access to the greatest extent possible while recognizing the responsibility to secure data appropriately. The university provides these resources to support the academic and administrative functions of the institution, and it expects the responsible use of the same.
Consistent with the university's obligation to preserve and protect such information by all appropriate means, access to information is made available only where there exists a valid business purpose. Additionally, the University is committed to protecting its data against threats such as malicious misuse, unauthorized intrusions, and inadvertent compromise. Every AUP department and employee is responsible for the integrity and security of university data used, controlled, or accessed within their area. Activities outsourced to off-campus entities must comply with the same security requirements as in-house activities. This policy establishes parameters for the protection of university data.