Educause Security Discussion mailing list archives

transferring data to vendors/outsourced services

From: "Witmer, Robert" <r.witmer () SNHU EDU>
Date: Mon, 19 Jan 2009 11:24:08 -0500

I am looking for a policy or "checklist" to be considered for vendor/third party data transfers.  The policy/checklist 
might include provisions for secure data transfer, the vendor's use of the information, vendor's data 
storage/protection of the information, etc.

Also, who (management, data owner, InfoSec, other, all) has the authority/responsibility to initiate, approve and 
implement data transfers to third-party vendors?

Thank you for your contribution.
Bob Witmer
r.witmer () snhu edu

Current thread:

transferring data to vendors/outsourced services Witmer, Robert (Jan 19)
- <Possible follow-ups>
- Re: transferring data to vendors/outsourced services St Clair, Jim (Jan 19)
- Re: transferring data to vendors/outsourced services Witmer, Robert (Jan 19)
- Re: transferring data to vendors/outsourced services St Clair, Jim (Jan 19)
- Re: transferring data to vendors/outsourced services Witmer, Robert (Jan 19)
- Re: transferring data to vendors/outsourced services Theresa Rowe (Jan 19)
- Re: transferring data to vendors/outsourced services Grama, Joanna Lyn (Jan 20)