Information Technology Desktop Services Technology Use Policies Harris School policies for computing device security mirror those of the overall university. University of Chicago policies and standards apply to those devices managed by the Harris School and those used for Harris business purposes. Please review the links below for further details.University of Chicago Policy on Information Technology Use and AccessUniversity policy regarding acceptable use and user privacy expectations applying to all users of University information technology resources and to all uses of those resources.Information System and Managed End User Device StandardsThese standards establish the University's minimum requirements for Information Systems and End User Devices (EUDs). They may be coupled with stronger requirements based on divisional standards.University Data Center Physical StandardsThese standards establish the minimum requirements for University Data Center physical standards. They may be coupled with stronger requirements based on divisional standards.CNetID Account Management PracticesThis document summarizes the practices and standards that are applied to the management of the University CNetID and associated credentials.Placement of Computing Devices in Network Security ZonesTo preserve the integrity of University-provided network access, this policy defines the placement of all computing devices in appropriate "network security zones" which have been created to help manage security risks while permitting open and free access for scholarship, research, and exploration.University of Chicago Employee HandbookOutlines the policies and professional standards expected of University of Chicago Staff.The University of Chicago Internal Audit CharterThe University’s Office of Internal Audit evaluates internal controls adequacy, operating environment, and related accounting, financial and operational policies, and reports the results accordingly.University Policy 601: Treatment of Confidential InformationThis policy identifies information that is considered confidential and establishes guidelines for the use of confidential information.University Policy 1201: Authority and Responsibility for Procuring Goods and ServicesThis policy seeks to define and assign authority and responsibility for the procurement of goods and services.