Computer Usage Policies & Procedures

ITS (Information Technology Services) is responsible for securing the University’s network and computing systems in a reasonable and economically feasible manner against unauthorized access and/or abuse, while making them accessible for authorized and legitimate users. This responsibility includes informing users of expected standards of conduct. Any attempt to violate the provisions of this policy will result in immediate disciplinary action, regardless of the success or failure of the attempt. The disciplinary action may include permanent loss of all computer accounts, suspension (for students), dismissal (for employees), and/or legal prosecution. This disciplinary action may be administered by University Police (consistent with University policies) and/or the FBI.

The users of the network are responsible for respecting and adhering to local, state, federal and international laws. Users who violate any such laws will be subject to prosecution and/or litigation. If such an event should occur, the University will fully comply with any complainants to provide any information necessary for prosecution and/or litigation. All activity on the University network is recorded and may be turned over to the appropriate legal authority.

SECTION 1: GENERAL COMPUTING POLICY

1.1 All computer systems that are the property of the State of South Carolina should only be used for work related business.

1.2 Any unauthorized, deliberate action which violates posted policy, damages or disrupts a computing system, alters its normal performance, or causes it to malfunction is prohibited regardless of system location or time duration.

1.3 Only software relevant to the users work related duties should be installed on a computer system. A list of software supported by ITS is available on request.

1.4 The copying or sharing of copyrighted materials, software, video and audio files (including MPEG files) without the express written permission of the owner or the proper licensing authority is prohibited.

1.5 Due to the increased risk of electronically transmitted viruses, it is suggested that software upgrades, installation files, and other executable files (*.exe files) should only be downloaded and installed from the Internet after consultation with ITS staff. This includes executable files (*.exe) attached to Electronic Mail messages, but does not include document files such as Word (*.doc) and Excel (*.xls). Individual users who do not confirm with this policy must take responsibility for all problems and issues that may subsequently arise.

1.6 Students must have AntiVirus software such as Norton or McAfee on their computers. (Students are responsible for purchasing the software).

1.7 Students must update Antivirus program definitions regularly.

1.8 Students must update and patch their operating system regularly to ensure system integrity and security.

1.9 Use of computer systems, facilities and/or services for commercial purposes is prohibited.

1.10 The installation of non-university Routers, Bridges, and similar equipment in Residence Halls is prohibited.

SECTION 2: NETWORK ACCOUNTS AND SECURITY

Once a user receives an id to access network and computer systems, the user is responsible for all actions taken while using that id. As a user of the network, you may be allowed to access other networks (and/or the computer systems attached to those networks). Therefore:

2.1 Applying for a user id under false pretenses is prohibited.

2.2 Sharing your user id with any other person is prohibited. If someone else uses your user id, you will be responsible for the actions that other person appropriated. Sharing of user ids will result in the loss of all computer accounts through the University.

2.3 Using your machine as a server on the network (or any directory or file on your machine) is prohibited unless access is password protected. Any files considered public should be copied to an appropriate directory on the network server.

2.4 Deletion, examination, copying, or modification of files and/or data belonging to other users without their prior consent is prohibited.

2.5 Attempts to evade or change resource quotas are prohibited.

2.6 Continued impedance of other users through mass consumption of system resources, after receipt of a request to cease such activity, is prohibited.

2.7 Use of systems and/or networks to gain unauthorized access to remote systems is prohibited.

2.8 Use of systems and/or networks to connect to other systems, in evasion of the physical limitations of the remote/local system, is prohibited.

2.9 Use of systems and/or networks to copy or share copyrighted materials, software, audio and video files (including MPEG files) is prohibited.

2.10 Decryption of system or user passwords is prohibited.

2.11 The copying and/or modification of system files is prohibited.

2.12 Any intentional attempt to "crash" network systems or programs is prohibited.

2.13 Any attempt to secure a higher level of privilege on network systems is prohibited.

2.14 The willful introduction of computer "viruses" or other disruptive/destructive programs into the organization network or into external networks is prohibited.

2.15 Any attempt to intercept and/or monitor network traffic is prohibited.

SECTION 3: ELECTRONIC MAIL

3.1 The Use of E-mail on the network system is conditional upon the following:

3.2 The E-mail system is University property and should only be used for work related purposes.

3.3 The University reserves the right to monitor E-mail and Internet usage.

3.4 There are no privacy rights in the creation, sending, or receipt of E-mail.

3.5 In response to system restrictions and space limitations, no pictures, graphics, movies, or any other E-mail file attachments should be in the system without a valid business reason.

Whenever you send electronic mail, your name and user id are included in each mail message. You are responsible for all electronic mail originating from your user id. Therefore:

3.6 Forgery (or attempted forgery) of electronic mail messages is prohibited.

3.7 Attempts to read, delete, copy, or modify the electronic mail of other users are prohibited.

3.8 Attempts at sending harassing, obscene or threatening email to another user is prohibited.

3.9 Attempts at sending junk mail, "for-profit" or chain email is prohibited.

SECTION 4: ELECTRONIC PAGES AND THE WORLD WIDE WEB

An Electronic Page is defined as information that can be viewed from another computer via a World Wide Web browser. This includes HTML pages, graphic files, and all forms of text documents.

Coastal Carolina University recognizes the value and potential of publishing on the Internet, and therefore encourages faculty, staff, students and organizations to publish electronic pages. Contents of all electronic pages located on University resources must be consistent with Coastal Carolina University policies and local, state, and federal laws. This includes links to other pages or computers. In other words, a page may be considered in violation if it contains links to a page that violates the policy. Users who violate this policy will be subject to disciplinary action (as defined in the Computer Usage section on page 1 of this document). The initial decision to take disciplinary action will be made by the Web Oversight and Policy Committee.

Electronic pages located on University resources must fall under one of the following three categories.

4.1 University Publication Pages

University publication pages are defined as electronic versions of printed University publications, or electronic information relating to a University support service. University publication pages are subject to the same University policies and standards as print publications.

University publication pages can be developed by a student, faculty, staff or organization, but must be approved by the Web Oversight and Policy Committee before they can be published electronically for the first time (it is recommended that approval is sought before the pages are created). The Committee may grant autonomy to a person or organization for modification or development of University Publication pages after initial approval.

University staff and resources (including ITS resources) may be used for University publication pages. University publication pages should support the following mission statement:

"To promote and enhance the image of Coastal Carolina University by providing accurate and relevant information through the electronic medium of the World Wide Web."

All University publication pages will begin with the Coastal Carolina University wordmark and logo. These pages will also contain the date of the last revisions and will clearly communicate the name of the individual or organization publishing the page. Copyright laws apply to electronic publishing as well as to print publishing. Individuals or organizations must have permission to publish the information, graphics, or photographs on their pages if they are not the author or creator.

4.2 Academic Pages

An Academic page is defined an electronic page directly relating to a School, Department or course taught at Coastal Carolina University.

Any student, faculty or staff member developing and maintaining academic pages must be appointed by the Dean of the School, head of the Department, or faculty member instructing the course.

The Web Oversight and Policy Committee will not be involved in approving academic pages, and it is suggested that individual Schools or departments establish some approval system. ITS staff and technology resources will not be used for academic pages (except by special arrangement).

4.3 Personal Pages

A personal page is defined as an electronic page for an individual who is a faculty member, staff member, or student at Coastal Carolina University, or organization affiliated with the University.

Personal pages should only provide information about an individual or organization that is relevant to their role at the University, and should not be used for personal business or personal gain unless they are of measured benefit to the university and are officially sanctioned by the appropriate authority at the university. Any university employee wishing to use university computing resources to host web pages for a non profit organization to which they are affiliated must receive prior written approval from the Web Policies and Oversight Committee. Web pages for business and for-profit organizations unrelated to the university are not permitted on university computing resources. University staff and technology resources cannot be used for personal pages, no matter how important or relevant to the interests of that person.

The official Coastal Carolina University home page and University publication pages will not link directly to personal pages. Academic pages may link to faculty, staff, or student personal pages. The Web Oversight and Policy Committee retains the right to request removal of any personal pages, or links from personal pages, that violate this policy. Failure to comply with this request will result in disciplinary action and removal of the pages by ITS.

The following statement must appear on all personal pages:

"The views and opinions expressed in this page are strictly those of the page author. The contents of this page have not been reviewed or approved by Coastal Carolina University."

SECTION 5: WIRELESS TECHNOLOGY

5.1 The office of Information Technology Services is responsible for managing the infrastructure of Coastal Carolina University Data Network, including wireless network access. Wireless Access Points (intended for colleges and departments) must be approved and registered prior to installation. Unapproved Wireless Access Points will not be allowed to connect to the campus network.

5.2 The installation of non-university Wireless Access Points, Routers, Bridges, and similar equipment in Residence Halls is prohibited.

SECTION 6: NEW AND EMERGING TECHNOLOGIES

All technologies that are not currently in use and operated through ITS (or covered in this document) must by proposed and accepted by the Web Oversight and Policy Committee before they can be used on University resources. This includes all forms of video conferencing, reflector software, newsgroups, bulletin boards, and mailing lists.

SECTION 7: HARDWARE SANITIZATION

The Division of the State Chief Information Officer (CIO) mandates that all equipment (e.g. computers and electronic media) that may contain intellectual property or personal information must be sanitized prior to transfer for other uses or for disposal. Departments should consult with their designated Information Resource Consultants in ITS prior to disposing any computer equipment. The complete State CIO Hardware Sanitization Policy can be found at: http://www.cio.sc.gov/SCEA/HW-Sanitization-Policy.pdf