Virginia Commonwealth University provides and maintains computer and network resources to support its faculty, staff, and students in their education, research, patient care, and work activities. All individuals receiving a university computing account, or using VCU computer and network resources, are expected to comply with this Computer and Network Resources Use policy. All users of these resources are expected to restrict their use of VCU computer and network resources to university-related responsibilities and actions. Limited personal use of the university's computer and network resources is permitted only when it does not interfere with the performance of the user's job or other university responsibilities or other university functions and is otherwise in accordance with this policy. Use of the university’s computer and network resources for an individual’s business or for personal commercial purposes is not authorized. Further limits may be imposed upon personal use in accordance with accepted management principles.
All users of VCU computer and network resources are expected to act in a responsible, ethical, and legal manner. VCU computer and network resource users must respect the rights and privacy of other users, share computer and network resources equitably and follow VCU policies and local, state, and federal laws relating to copyrights, privacy, security, and other uses of computer, networks, or electronic media. University employees are specifically prohibited from using VCU computers, networks, or electronic media in contravention of Va. Code Section 2.2-2827 as detailed more fully below.
This policy sets forth the responsibilities of faculty, staff, students and system administrators when using VCU computer and network resources and the responsibilities of the VCU Chief Information Officer in enforcing it.
Noncompliance with this policy may result in disciplinary action up to and including termination for employees or expulsion for students. Suspected violations of this policy should be reported according to the policy specifics and procedures. VCU supports an environment free from retaliation. Retaliation against any person who brings forth a good faith concern, asks a clarifying question, or participates in an investigation is prohibited.
Individuals who will be utilizing VCU computer and network resources are responsible for knowing this policy and familiarizing themselves with its contents and provisions.
Within the context of this document, an authorized individual is a VCU employee, including student workers, a student or affiliate who has been granted access to VCU computer and network resources based on their relationship with VCU.
Within the context of this document, download refers to the action of transferring data from one computer system, including computer systems located on the Internet, to another computer system or to another storage medium such as, but not limited to, USB drives, tablets, phones, hard disks, or CDs.
Within the context of this document, an organizational unit is a college, school, a department, or division that reports up through a cabinet member. Examples of organizational units include School of Engineering, College of Humanities and Sciences, School of Medicine, Office of Technology Services, Enrollment Services, and Facilities Management.
Within the context of this document, personal privacy refers to the ability and right for individuals to control how information about them are collected, disseminated, and used.
Within the context of this document, post refers to the action of making data or files accessible through a computer or network resource. Examples of posting activities include, but are not limited to, commenting on an online forum, providing a status update to a social media site, or placing a file on a public server for others to download.
Within the context of this document a server refers to a computer system or a collection of computer systems designed to provide services that process, store, or transmit data and information for one or multiple clients; where the client may be other computer systems or programs that are used by individual users. A server may be hosted by VCU inside of its networks, or hosted by a third party on the Internet or other external networks.
As defined in Va. Code § 2.2-2827 (i) any description of or (ii) any picture, photograph, drawing, motion picture film, digital image or similar visual representation depicting sexual bestiality, a lewd exhibition of nudity, as nudity is defined in § 18.2-390, sexual excitement, sexual conduct or sadomasochistic abuse, as also defined in § 18.2-390, coprophilia, urophilia, or fetishism.
A unit head is the administrative employee responsible for the operations of an organizational unit. A unit head can be a dean of a school or the director of a department or division.
With the context of this document, use refers to the action of generating, accessing, modifying, viewing, downloading, posting, uploading, storing, or removing information through computer and network resources.
All information technology (IT) resources, including but not limited to wired and wireless networks, VPN’s, software or applications, servers, appliances, workstations, desktops, laptops, tablets and any mobile devices, that are used by authorized individuals in the course of their university responsibilities or are purchased with funding allocated to VCU. Free and open source software or applications used by university employees for the purpose of education, research, patient care or administration that relates to the university’s mission and day-to-day operations are also considered VCU computer and network resources.
The VCU Helpline is an anonymous reporting tool that enables individuals to ask questions, report policy violations, ethics concerns, as well as other regulatory concerns with the university. The VCU Helpline can be accessed anonymously at www.vcuhelpline.com, by calling 1-888-242-6022 (from the United States) or by making a collect call to 503-748-0867 and giving the name “Virginia Commonwealth University” if calling from Qatar.
The VCU Office of Technology Services officially interprets this policy and is responsible for obtaining approval for any policy revisions. Please direct policy questions to the VCU Office of Technology Services and / or VCU Information Security Office. To contact either office with questions or concerns, please contact the VCU IT Support Center, itsc@vcu.edu or infosec@vcu.edu or call 804-828–2227.
VCU computer and network resources must not be used in connection with the following:
There are no forms associated with this policy.
This policy supersedes the following archived policies:
In accordance with the VCU Duty to Report policy, an employee, affiliate or student can typically report the violation to his or her department / unit administrator or head. Alternatively, the individual can also report the violation to the VCU chief information officer or the VCU Helpline. The department or unit administrator must report the violation to the university chief information officer.
Yes. Questions or concerns may be submitted to the VCU Helpline anonymously at the website, by calling 1-888-242-6022 (from the United States) or by making a collect call to 503-748-0867 and giving the name “Virginia Commonwealth University” if calling from the Qatar campus.
No. You must contact the chief information officer to report your concerns and suggest initiation of monitoring or investigation. Unauthorized monitoring is prohibited and is considered a violation of this policy.
Yes. The university has the authority to monitor computer, network, email and Internet usage on the university network, as well as usage of university owned computers and applications on and off the university network to ensure network and information security, comply with legal requests and ensure the safety and security of the university population. Further, records of university computer and network usage data may be subject to the Virginia Freedom of Information Act. However, any monitoring of computer and network usage must be authorized by appropriate personnel and conducted by designated university staff as defined in this policy.
Occasional usage of university computer and network resource for non-work related activities are generally acceptable, as long as the activities do not interfere with performance of your job or other university responsibilities. Further, the non-work related activities must not include any prohibited actions as described in this policy including use of computer or network resources to access sexually explicit materials in violation of Va. Code 2.2-2827. Use of social media sites for work-related reasons must be conducted in accordance with this policy.
Yes. While the computer or electronic device may belong to an individual, the use of VCU wired or wireless network subjects the individual user to this policy. Further, if you use personally-owned computers or electronic devices to conduct VCU work, those records must also be made available to the university and are subject to the Virginia Freedom of Information Act.
Yes. This policy covers the use of VCU computer or network resource to generate, access, modify, view, download, post, upload, store, and / or remove information. Any of the aforementioned actions utilizing VCU Computer and Network Resources are regulated under this policy.
Yes. Regardless of the device used and service accessed, the use of VCU wired or wireless network subjects the individual user to this policy.
VCU Safe Zone logo [View Image]
VCU Helpline logo [View Image]
Your concerns are our concerns.
To report any concern or for more information,
visit VCUHelpline.com or call 1-(888) 242-6022
![[View Image]](https://policy.vcu.edu/media/policy/images/policy-letterhead.jpg){kind=link}
![[View Image]](https://policy.vcu.edu/media/policy/images/vcu-safe-zone-footer.png){kind=link}
![[View Image]](https://policy.vcu.edu/media/policy/images/helpline-logo-footer.png){kind=link}