{"id":777,"date":"2024-12-18T16:48:38","date_gmt":"2024-12-18T16:48:38","guid":{"rendered":"https:\/\/policies.pstcc.edu\/?page_id=777"},"modified":"2025-02-06T18:51:28","modified_gmt":"2025-02-06T18:51:28","slug":"policy-081308","status":"publish","type":"page","link":"https:\/\/policies.pstcc.edu\/?page_id=777","title":{"rendered":"POLICY 08:13:08"},"content":{"rendered":"\n

ELECTRONIC ACCOUNT ACCESS<\/strong><\/h2>\n\n\n

This policy is consistent with TBR Policy 1.08.03.00 Digital Identity, Authentication Management, and Access Control (formerly G-051 & G-052) : 1.08.03.00<\/p>\n

Purpose<\/p>\n

The purpose of this policy is to define the college\u2019s rights and responsibility to protect information transferred and affiliated with local computer use and data contained within the college\u2019s information technology system and resources, as well as the requirements for providing and revoking access to access to a current or former employee\u2019s account by another user.<\/p>\n

Scope and Applicability<\/p>\n

This policy applies to all individuals who are provided access to another user\u2019s account and\/or data.<\/p>\n

Definitions<\/p>\n

Account Owner – the person to whom the account is listed by name
Administrative account – accounts with elevated privileges used to gain access to controlled restricted and\/or confidential data
Email account \u2013 local communication account assigned to students, staff and faculty contained within the college email system
General User account \u2013 accounts granted to user for access to college applications such as connected computers, Banner and email
Non-Owner \u2013 anyone that is requesting information from accounts other than their own Policy and User Responsibilities<\/p>\n

Pellissippi State respects the right to privacy when using college computer systems and related equipment within the context of local, state, and federal laws and regulations. To facilitate this right, the president of the college must approve any request for access to a current or former employee\u2019s account. Account descriptions and definitions are in Policy 08:13:02 Computer Account.
Any information requested and subsequently released should be considered confidential, and disclosure of this information to unauthorized individuals could result in legal liability.
Additionally, if information is discovered through this process that might violate TBR Policy and Guidelines, state law, federal law, etc., the director of Internal Audit must be notified and an investigation may result. Failure to provide information concerning violations of state or federal law could result in an individual being charged as an accessory after the fact to the violation of the law.<\/p>\n

User Responsibilities<\/p>\n

To gain information about or access to or to inquire within any other owner\u2019s account, the inquiring non owner must complete the appropriate form requesting the account manipulation and provide acceptable justification for account manipulation and information access. The form must be signed by the requesting non-owner and approved by the appropriate supervisor(s) and the president of the college.<\/p>\n

Reasons for inquiries in archived file(s) include, but are not limited to:<\/p>\n