It is the policy of Danville Area Community College to ensure the safeguarding of records and confidentiality of data related to customers’, students’, and employees’ personal and private information in compliance with the Federal Trade Commission Gramm- Leach-Bliley Act (GLB Act), the Fair and Accurate Credit Transactions Act (FACT Act), Red Flag Regulations, Family Educational Rights and Privacy Act (FERPA), Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (HITECH Act), and the United States Department of Labor Training and Employment Guidance Letter No. 39.11 (USDOL TEGL 39- 11).

Procedure

The College’s Information Security Team will oversee compliance of the Information Security Plan which includes periodic evaluation of the Plan and staff training.