Manual of Administrative Policies and Procedures

What personally identifiable data is being stored?

Northeastern State University may collect personally identifiable data, which may include certain information related to university students, potential students, employees and vendors. Personally identifiable data is defined in 74 O.S. § 3106.4 (D) as:

Information that can identify an individual including, but not limited to, name, birth date, place of birth, mother's maiden name, biometric records, Social Security number, official state- or government-issued driver’s license or identification number, alien registration number, government passport number, employer or taxpayer identification number or any other information that is linked or linkable to an individual, such as medical, educational, financial or employment information.

How is the personally identifiable data stored?

Personally identifiable data is stored on NSU’s secured servers, digitally on computers, on backup media, securely in the cloud and in secured locations if in paper form.

With whom does NSU share the personally identifiable data?

NSU shares personally identifiable data only as allowed by law. Examples of whom NSU might share personally identifiable data include:

• Federal & State licensing & regulatory boards
• Federal & State Courts and pursuant to a court order of valid subpoena
• Insurance providers
• NCAA & MIAA
• Learning Management Systems