The purpose of this policy is to establish the appropriate use of Illinois State University's computing and telecommunication networks, computing equipment, and technology resources. These resources are owned by the University and are provided primarily to support the academic and administrative functions of the University. Federal and state law as well as University policies and procedures govern the use of this equipment and technologies. Additional rules and regulations with accompanying violation procedures may also be adopted by divisions/departments to meet their specific administrative or academic needs. Any adopted divisional/departmental policy must be in compliance with applicable federal and state laws and the policies of the University. This policy supersedes all divisional/departmental policy.
Technology resources are for members of the Illinois State University community. Those permitted access to the University’s network or Internet services are responsible for using it in an effective, ethical and lawful manner. All persons who use a network resource connection through Illinois State University, whether from on-campus or remotely from off-campus, must adhere to this policy. Those who are permitted to have access are defined in the Information Resource Access and Security Policy.
The principles of academic freedom apply in full to electronic communications. The conventions of courtesy and etiquette, which govern vocal and written communications, shall extend to electronic communications as well. Individuals are responsible for their representation on the Internet as well as the representation and image of Illinois State University. Fraudulent, harassing, threatening, or obscene messages and/or other materials may not be transmitted through the University's electronic resources. Inappropriate communications include, but are not limited to, the following:
Any communication sent under an assumed name or modified address, or with the intent to obscure the origin of the communication.
Any communication that is defined as prohibited harassment according to the Equal Opportunity/Affirmative Action Policy can be found in the University Policies and Procedures Manual and as defined in the Student Code of Conduct found in the Student Handbook.
Any communication for the purpose of making a comment, request, suggestion or proposal which is obscene with intent to offend, interrupting with the intent to harass the electronic communication service of any person, transmitting to any person with the intent to harass which prevents that person from using his or her electronic communications device, or any other action that has been defined as harassment according to the Harassing and Obscene Communications Act.
Any communication resulting in an individual being fearful of bodily harm and/or emotional/mental disruption of his/her daily life.
Use of computing resources is restricted to authorized purposes consistent with the University's mission. Conducting, promoting or advertising a personal commercial enterprise is prohibited. Inquiries and requests to promote or advertise should be submitted to the Associate Vice President for Information Technology.
No one may willfully attempt to degrade the performance or deny access of a computer system or network infrastructure component on ISUnet or the Internet. No one may participate in any activity that violates the spirit of cooperation that is the basis of the Internet.
No one person or group may establish a major network service, introduce a service that conflicts with a centrally, predefined service, or obtain network connectivity without coordinated planning and prior approval from Telecommunications and Network Support Services. This need for planning and prior approval also extends to, but is not limited to, network wiring, network infrastructure, dial-up service, network addresses and naming conventions, and network attached computer labs. Refer to existing University Telecommunications and Networking policies, guidelines and procedures for more details.
Knowing or reckless broadcasting of unsolicited mail or messages is prohibited. Examples of such broadcasts include chain letters, mail bombs, virus hoaxes, spam mail (spreading email or postings without good purpose), and other email schemes that may cause excessive network traffic or computing load. Those who anticipate sending large numbers of electronic mail messages for official University or academic purposes are responsible for consulting with the System Administrator for campus host based services to determine the appropriate means for distributing messages with the least impact on campus computing resources.
Large-scale distribution of such things as MP3 music or video files or the use of streaming audio or video can cause excessive network loading. No one may knowingly or recklessly download or distribute excessively large data files, large numbers of digital audio or video files, or audio or video streams. The University reserves the right to manage and restrict these types of applications. No one shall attempt to circumvent defined University restrictions.
All members of the University community must observe intellectual property rights, which include software licensing. For those developing creative works, the author must follow the Intellectual Property Policy, published in the University Policies and Procedures Manual, to establish the appropriate protection.
No one may use loopholes in computer or network security systems or knowledge of a special password to damage computer or network systems, obtain extra resources, take resources from another user or gain access or attempt to gain access to restricted resources for which proper authorization has not been given.
Illinois State University respects the privacy of individuals’ electronic files and will take reasonable steps to protect that privacy. Moreover, it is the expectation of Illinois State University that individual members of the electronic community have an obligation to show the same respect for the privacy of the other members of the community. Users should understand, however, the limited privacy afforded by electronic data storage and electronic mail and apply appropriate security to protect private and confidential information. Disclosure of files may be necessary in the following circumstances:
Under the Illinois Freedom of Information Act (FOIA), electronic files are treated in the same way as paper files. Public documents as defined by FOIA are subject to inspection through FOIA. The Freedom of Information Act Implementation Rules in the University Policies and Procedures Manual will be followed.
Illinois State University reserves the right to examine otherwise private files should reasonable cause exist to believe an individual has violated state or federal law or university regulation. Such files may be examined only to the extent necessary to identify whether the suspected violation has occurred. Users should be aware that any files, which are shared through the university network, are subject to all university rules and regulations. A system administrator in the course of routine maintenance might see the contents of electronic messages and files. Electronic mail systems store messages in files (e.g. the file containing a user’s inbound mail.), which are copied to tape in the course of system backups. The contents of these files and copies on system backup tapes are subject to the liabilities stated in the preceding paragraphs.
A user accepts full responsibility for all violations defined in this document including but not limited to the following situations:
The following procedure will be enacted upon any violation of this policy:
The following positions are defined as having responsibility for the investigation of violations:
Appropriate Use Coordinator: A named person in charge of administering this policy.
Appropriate Use Advisory Committee: The following positions will serve on the committee at the discretion of the Appropriate Use Coordinator: Data Security Administrator, Directors of Campus Technology Support Groups and Administrative Computing or their designee, and Technical Advisors.
System Administrator: Technical support professional that has responsibility for running, maintaining and securing assigned resources.
Alternate Contacts: The Data Security Administrator will be back-up to the Appropriate Use Coordinator. In the absence of either person a named person from the Committee will fulfill the role.
Referral Offices:
Students - Student Dispute Resolution Services
Civil Service Staff - Human Resource Office
Faculty and Administrative Professional Staff -- Provost Office
University High School Students - University High School Principal
Metcalf School - Metcalf Principal
All Others - Appropriate Use Coordinator
The process will start when the individual has made a complaint to the Appropriate Use Coordinator. The complainant is responsible for the initial "burden of proof." The Appropriate Use Coordinator may request that the complainant complete the "Request for Review" form which may be obtained at http://www.adm.ilstu.edu/Security/. If requested, the "Request for Review" form must be returned to Computer Infrastructure Support Services either by surface mail, fax or in person according to the instructions on the form. Upon receiving a complaint, the Appropriate Use Coordinator will decide the level of complaint and if necessary request the assistance of the Appropriate Use Advisory Committee. The Appropriate Use Coordinator may or may not release the identity of the alleged violator to the complainant.
Level I (Warning)
The Appropriate Use Coordinator will send an e-mail and US Postal mail to the alleged violator informing him/her of the alleged violation. The message will direct the alleged violator to discontinue the inappropriate behavior, ask him/her to reread the Appropriate Use Policy and Electronic Communications Guidelines, and offer the option of a meeting. A copy of the complaint and violation notice will be forwarded to the appropriate referral office.
Level II (Referral)
If the account holder received a warning, and continues to violate the Appropriate Use Policy in any capacity, or the action is deemed as a serious offense, the individual's accounts and/or connections on all University owned systems may be suspended. If the accounts and/or connections is/are to be suspended, the Appropriate Use Coordinator will contact the various System Administrators on campus to suspend the alleged violator's accounts and/or connections on all electronic communication resources. Additionally, the
Appropriate Use Coordinator will contact the appropriate referral office and forward a copy of the complaint file with the supporting evidence. That office will then contact the individual to inform him/her of the necessary actions to be taken according to that office's grievance/discipline procedure. It will be the referral office's responsibility to provide the Appropriate Use Coordinator the direction of the decision (sustainable/not sustainable) and the timeframe of the account and/or connection suspension (if any). It will then be the responsibility of the user to request his/her account and/or connections be reactivated at the appropriate time. The Appropriate Use Coordinator will assist the referral office with any technical assistance as needed.
The following exceptions will apply to the above procedure:
Immediate Action
If the violation is viewed as excessive or detrimental to the reputation of the University, or is viewed as a blatant attempt to undermine the use of the University's electronic communication's resources, the system administrator reserves the right to disregard the above process and immediately suspend the user's account and/or connection. As soon as the system administrator is able, he/she must file a "Request for Review" form and provide all supporting evidence for the account and/or connection suspension to the Appropriate Use Coordinator.
Potential Criminal Acts/Threats
If an account holder receives any communication that results in being fearful of bodily harm, or any other criminal acts, the complaint will be immediately sent to the University Police.
Outside Authorities
Campus Technology Support Groups and Administrative Computing will cooperate appropriately, upon the advice of the University General Counsel, with any local, state or federal officials investigating an alleged crime committed by an individual who has an account/connection on an Illinois State University computer system.
Digital Millennium Copyright Act Compliance (DMCA)
The University's DMCA agent will evaluate all reports of copyright infringements. If the agent determines that the report is an infringement, the Appropriate Use Coordinator will follow the above violation procedures.
Diversity and Affirmative Action
Notice of alleged harassment of discrimination based on race, color, religion, sex, national origin, sexual orientation, ancestry, age, marital status, physical or mental disability, unfavorable discharge from military, or status as a disabled veteran or veteran of the Vietnam Era will be sent to the Office for Diversity and Affirmative Action.
Academic Records
All violations that involve inappropriate use of student academic information will be sent to the University Registrar. The University Registrar is responsible for investigating reports of FERPA violations.
In compliance with the State of Illinois Records Act, files of all reported violations will be maintained for a minimum of five years from the decision date.
Many academic course and work-related activities require the use of computers, networks and systems of the University. In the event of an imposed restriction or termination of access to some or all University computers and systems, a user enrolled in such courses or involved in computer-related work activities may be required to use alternative facilities, if any, to satisfy the obligation of such courses or work activity. However, users are advised that if such alternative facilities are unavailable or not feasible, it may be impossible to complete requirements for course work or work responsibility. The University views misuse of computers as a serious matter, and may restrict access to its facilities even if the user is unable to complete course requirements or work responsibilities as a result.
Questions or Suggestions Regarding this policy:
Appropriate Use Coordinator
abuse@ilstu.edu
All persons who use a network resource connection through Illinois State University, whether from on-campus or remotely from off-campus, must adhere to this policy. Additional rules and regulations with accompanying violation procedures may also be adopted by divisions/departments to meet their specific administrative or academic needs. Any adopted divisional/departmental policy must be in compliance with applicable federal and state laws and the policies of the University. This policy supersedes all divisional/departmental policy.
On August 21, 1997 the President of Illinois State University approved the Appropriate Use Policy. This policy will be periodically reviewed by the Information Technology Policy and Planning Council and changes or additions to this policy will be recommended by this Council to the President of the University.
Last Review: March 2004
