Regulations and Standards which Apply to Middlebury

Middlebury is required to maintain comply with a number of regulations and standards. The following is a list of core laws or standards to which the College must adhere. For more information on how we abide by these please refer to the Policies page. 

•Family Education Rights and Privacy Act (FERPA) = Student Data

 •Health Information Portability and Accountability Act (HIPAA) = Health Data

 •Sarbanes – Oxley Act (SOX) = Financial Data for Businesses

 •Gramm Leach Bliley Act (GLBA) = Financial Data for Lending Institutions

 •VT Act 162 = Data Breach Notification & SSN Handling

•Payment Card Industry Standards (PCI-DSS) = Credit/Debit Card Data