Minnesota State Colleges and Universities is committed to protecting the security and privacy of its information resources and to make information accessible to fulfill its mission of providing high quality higher education. The system shall maintain the confidentiality, integrity and availability of information resources; ensure continuity of operations; prevent, control and minimize the impact of security incidents; and manage risks to those resources regardless of the storage medium, transmission or disposal methods. Each college and university and the system office shall adopt and implement privacy and security policies, procedures, plans, programs and training for its information resources consistent with applicable system policy, procedures and other applicable standards and state and federal law.

All users of Minnesota State Colleges and Universities system information resources are responsible for the privacy, security, and appropriate use of those resources over which they have authority, access or control, and for compliance with applicable laws, regulations, policies, procedures and other standards. Each college, university and the system office shall provide appropriate security awareness resources for its users.