If you need to comply with HIPAA, take a look at
These are about the most restrictive requirements I've come across.
If non-IT people would have access to the computer and/or networking
equipment, there are other laws (such as Gramm-Leach-Bliley
< http://thomas.loc.gov/cgi-bin/query/z?c106:S.900: > and
< http://www4.law.cornell.edu/uscode/html/uscode20/usc_sec_20_00001232---g000-.html >
that would apply. S.1408
< http://commerce.senate.gov/pdf/s1408-asreported.pdf >
has not been enacted as far as I know, but it's pretty restrictive, and
something on that order is bound to become law sooner or later.
J. Michael Yohe
Executive Director, Electronic Information Services
410 Christopher Center, 1410 Chapel Drive, Valparaiso, IN 46383-4523
E-mail: [log in to unmask]; Phone: 219-464-6763; FAX: 219-548-7702
On Wed, 8 Feb 2006, Smith, Dena wrote:
> Date: Wed, 8 Feb 2006 09:21:25 -0500
> From: "Smith, Dena" <[log in to unmask]>
> Reply-To: The EDUCAUSE CIO Constituent Group Listserv
> <[log in to unmask]>
> To: [log in to unmask]
> Subject: [CIO] Restricted Location of IT staff
> I am looking for information to support my position that our IT staff need to be physically located in a secured space (ie. no public access to area). Our university is growing and space is highly contested. The current plan by the administration is to move faculty offices into our work area. Please point me to any reference material, regulations, compliance issues, etc., that I can use to protest this plan. Thanks for your assistance!
> Dena Smith
> Ohio Dominican University
> Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.