Middlebury

 

Regulations and Standards which Apply to Middlebury

Middlebury is required to maintain comply with a number of regulations and standards. The following is a list of core laws or standards to which the College must adhere. For more information on how we abide by these please refer to the Policies page. 

•Family Education Rights and Privacy Act (FERPA) = Student Data

 http://www.ed.gov/policy/gen/guid/fpco/ferpa/index.html

 •Health Information Portability and Accountability Act (HIPAA) = Health Data

 http://www.hhs.gov/ocr/privacy/

 •Sarbanes – Oxley Act (SOX) = Financial Data for Businesses

www.sec.gov/about/laws/soa2002.pdf

 •Gramm Leach Bliley Act (GLBA) = Financial Data for Lending Institutions

 http://business.ftc.gov/privacy-and-security/gramm-leach-bliley-act

 •VT Act 162 = Data Breach Notification & SSN Handling

http://www.leg.state.vt.us/docs/legdoc.cfm?URL=/DOCS/2006/ACTS/ACT162.HTM

•Payment Card Industry Standards (PCI-DSS) = Credit/Debit Card Data
https://www.pcisecuritystandards.org/
MiddTags: