BP 3240 Data Governance
References:
BP 5040: Education Records, Directory Information and Privacy
Federal Education Rights and Privacy Act
Oregon State Privacy Laws and Practices
Health Insurance Portability and Accountability Act
General Data Protection Regulation
Payment Card Industry Data Security Standard
Graham- Leach Bliley Act
The Board of Education is committed to managing student-, faculty-, staff-, and institutional data as vital college resources, ensuring the accuracy, consistency, confidentiality, and security of such data by clearly defining data access levels, assigning data stewards, strictly adhering to all applicable privacy regulations, allowing data access and usage only for authorized purposes related to institutional operations, and requiring proper data handling practices by all employees.
The college president shall establish procedures to ensure the accuracy, consistency, confidentiality, and security of institutional data assets in accordance with applicable laws, regulations, and best practices. The procedures will include the establishment of a Data Governance Committee to regularly review processes, procedures, and practices related to institutional data management and make recommendations to the President as needed to update or modify the same.
Rescinds Procedure Number: None
Adopted: May 20, 2025