Temple Times Online Edition
    September 7, 2006
NewsEventsArchivesPhotosStaffLinksTemple Home


New legal requirements on personal information

In June, Chief Information Security and Privacy Officer Ken Ihrer addressed faculty and administration members asking them to take several specific steps to ensure that personal information on file at Temple is secure.

His memo follows:

Starting June 20th, 2006, a new Pennsylvania law, known as the Breach of Personal Information Notification Act, will mandate actions Temple University must take in the event of possible identity theft where personal information on any resident of Pennsylvania may have been exposed.

Similar laws are already in place that mandate notification in the event of disclosure for residents of other states.

In order to best ensure we do not have any personal information breaches, I am asking you to notify me regarding any records, files or databases you may have that contain the following information:

1. a social security number,

2. a driver’s license number or a state identification card number issued in lieu of a driver’s license number, or

3. a financial account number, credit card number or debit card number, in combination with any required security code, access code or password that would permit access to an individual’s financial account.

Directory information, such as name and address, does not constitute a breach if disclosed.

Additionally, the University’s TUID number would not be considered personal information based on the law.

Please send me an account of all systems (i.e., servers, desktops, laptops, etc.) that contain the personal information listed above. Additionally, if you store paper records with any of the listed personal information, please let me know so that we can work with campus security to ensure their protection.

Please include your contact information so that I may reach you and work with you to find ways to eliminate or reduce our risk. Send your correspondence to ihrer@temple.edu.

If you discover or suspect that a breach of personal information has occurred, whether in electronic or paper format, please contact my office immediately. I may be reached at 215-204-7088. If you have any questions about this requirement, please do not hesitate to call.