108 Information Security Requests to Access User Content

The following table shows who is responsible for ensuring compliance with the policy requirements listed below.

Requirement	Office of General Counsel (OGC)	Dean, Vice Chancellor, or Higher-Level Executive	System Custodians/ Administrators	Department, School, or Unit
Approves requests for access associated with internal investigation, litigation, or other legal/compliance purposes (p. 2).	✔
Approves requests to use elevated privileges for management continuity (p. 2)		✔
May provide access to information as specifically instructed by OGC or Human Resources (HR) (p. 2).			✔
Identify, collect, and preserve electronic information related to litigation (p. 3).		✔
Identify in-scope information for legal holds (p. 3).	✔			✔
Approves recycling or deletion of information involved in a hold (p. 3)	✔

Summary of Policy

The policy describes how OIS handles requests for access to content created by active or former WashU Community members. This content includes, but is not limited to, messages (e.g., email, chat, data and file sharing services), files, and browser bookmarks. The policy also provides guidance for IT actions prior to granting access to any individual’s electronic activity, and in situations in which the request is related to a legal or regulatory incident.

Full Text of Policy

Related Information