Policies & Standards

All policies with their full text are available on the CSUSB policies website.

CSUSB Standards

Information Security Standard

Asset Management


CSUSB Information Classification Standards [PDF]

Access Control

Physical and Environmental Security

CSUSB Physical Access to the Data Center [PDF]

Operations Security

CSUSB Web Application Security Standard [PDF]


Communications Security

Information Security Incident Management

Vulnerability Management

Log Management

CSUSB Policy Highlights

Acceptable Use Policy For Electronic Communications 
Campus policy regarding the use of electronic communications for students, faculty and staff.

Policy on Wireless Networks 
Campus policy to manage the deployment of wireless network products and services across the campus.

Student Records Administration Policy 
Policies and regulations by the campus to implement the mandate of subject laws.

Compliance with Copyright Law
The procedure, and possible consequences, of copyright violations

CSU Policy Highlights

Integrated CSU Administrative Manual Section 8000 Information Security Policy

Confidentiality/Protection of Personal Data
The CSU has an obligation, under various laws and CSU systemwide policy, to protect personal employee information and to maintain the confidentiality of that data.

Laws, Acts, and Statutes

Federal Wiretap Acts and Statutes
Federal laws that govern the intercept of electronic transmissions

DMCA Summary
U.S. Copyright Office Summary of the Digital Millennium Copyright Act of 1998 (PDF)

HIPAA Privacy Rule
U.S. Dept. of Health & Human Services Summary of the Health Insurance Portability and Accountability Act of 1996 (PDF)