91µÎµÎ

Updated: Sun, 10/06/2024 - 10:30

From Saturday, Oct. 5 through Monday, Oct. 7, the Downtown and Macdonald Campuses will be open only to 91µÎµÎ students, employees and essential visitors. Many classes will be held online. Remote work required where possible. See Campus Public Safety website for details.

Du samedi 5 octobre au lundi 7 octobre, le campus du centre-ville et le campus Macdonald ne seront accessibles qu’aux étudiants et aux membres du personnel de l’Université 91µÎµÎ, ainsi qu’aux visiteurs essentiels. De nombreux cours auront lieu en ligne. Le personnel devra travailler à distance, si possible. Voir le site Web de la Direction de la protection et de la prévention pour plus de détails.

91µÎµÎ.CA / Web Services / Resources / Digital standards
2 students sitting down together in front of a laptop

Protect websites and users' data

91µÎµÎ

Why is this important?

Visitors need to be confident our sites are secure and their privacy is protected.

Legislation and policy

91µÎµÎ staff are subject to Quebec and Canadian laws and 91µÎµÎ’s policies concerning information security and maintaining the confidentiality of personal information.

In addition, anyone who processes, transmits or stores credit cards information in an unsecure and unauthorized manner may be found in violation of financial confidentiality laws and expose themselves to legal liability. If you need to collect payment, please get in touch with Financial Services.

Christopher Manfredi, Provost and Vice-Principal Academic, describes the responsibility of all academics to uphold 91µÎµÎ's information security

Visit 91µÎµÎ’s cybersecurity websiteÌýSecure your journeyÌýfor additional tools and resources.

Checklist of things to do

  • Create secure webpages and webforms that properly protect users' personal data (e.g. use secure formats and platforms like https, adhere to recommendations for building secure webforms)
  • Do not display or email people's confidential information (unless it's using 91µÎµÎ's official email)
    • Do not identify student names without their written consent, e.g. on Research web pages, do not list student participants
  • If you become aware of unsafe practices or vulnerabilities,
  • Keep web systems and tools up to date
  • Ensure your site has a designated sponsor/asset steward
  • Delete/decommission websites when they become inactive and/or are no longer of value
  • Update website access permissions accordingly when your web team members change roles, leave your department or leave the university
  • Use 91µÎµÎ usernames and passwords for authentication on 91µÎµÎ websites and systems (where possible)
    • If authentication is required on 91µÎµÎ websites, it should be performed using one of our preferred Single Sign On (SSO) methods, such as SAML, Ìýwith 91µÎµÎ’s central identity provider.
  • Limit data collection for analytics and user research to interactions around links, buttons and page elements only
  • If linking to information in a cloud service, adhere to instructions in 91µÎµÎ's Cloud Directive which describes when and where you can process, transmit and storeÌý91µÎµÎ data

Supporting resources

How to create secure webforms

Ìý

Privacy and security policies and guidelines

91µÎµÎ policies and guidelines site owners and managers should be aware of.

Use of information technology
Privacy and personal information
Financial
transactions
Ìý
Back to top