Policies and Standards

Our policies and standards help educate the community about best practices in IT, promote university-wide operational efficiencies, reduce institutional risks and help ensure compliance with applicable laws and regulations.

For additional policies that apply across all of Ohio State, visit University Policies.

Displaying 1 - 12 of 12

Application Use Statement

This statement outlines how use of Ohio State information systems, equipment, networks, etc. constitute consent to abide by all applicable university policies.

View the Application Use Statement

Cloud Computing Guidelines

The Cloud Computing Guidelines provide guidance to members of the Ohio State community who wish to use applications and services available on the web, including social networking applications, file storage and content hosting.

View the Cloud Computing Guidelines

Digital Accessibility Policy

This policy establishes minimum standards for the accessibility of digital information and digital services, as well as the reporting requirements necessary to ensure compliance with the university’s obligations under applicable state and federal accessibility regulations.

View the Digital Accessibility Policy | Digital Accessibility Services

European Union General Data Protection Regulation (GDPR) Statement

This statement explains how Ohio State complies with the European Union General Data Protection Regulation (GDPR) and what rights EU or EEA residents have to information collected by Ohio State.

View the GDPR Statement

Information Security Incident Response Management Policy

This policy provides guidance on the applicable reporting, investigation and notification requirements in the event of a security incident.

View the Information Security Incident Response Management Policy

Information Technology (IT) Security Policy

Ohio State's Information Technology Security Policy provides guidance for establishing IT security requirements for all information assets and systems under the university’s defined control and for the people who access these systems.

View the IT Security Policy

Institutional Data Policy (IDP)

Ohio State's Institutional Data Policy was created to help protect the university’s institutional data while preserving the open, information-sharing mission of its academic culture.

View the Institutional Data Policy | IDP Training

Responsible Use of University Computing and Network Resources Policy

This policy provides guidance for establishing responsibilities and limitations associated with the use of university computing resources.

View the Responsible Use Policy | Responsible Use Policy FAQs

Security Framework

The Security Framework is a series of information security and risk management documents to assist organizations in understanding and implementing strategies to manage information risk.

View the Security Framework | Information Security Control Requirements (ISCR) | ISCR Assessment (ISCR.a) | Information Security Standard (ISS) | Information Risk Management Framework (IRMF)

SMS Texting Information

This information outlines the terms and conditions that apply to the university's use of SMS texting for various Ohio State programs and initiatives.

View the SMS Texting Information

University Cookie Statement

The University Cookie Statement outlines the types of cookies the university uses and how the data is used to enhance a visitor's web experience.

View the University Cookie Statement

Web Privacy Statement

Ohio State's Web Privacy Statement outlines what user information Ohio State collects, how that data is used and when it is shared with others.

View the Web Privacy Statement

Search form