Access and Use Agreement
for UW Data and Information Systems
(“Agreement”)

You have requested, or someone on your behalf has requested, that you have access to University of Washington (UW) Information Systems or UW Institutional Information.

If you are a UW employee, you are required to accept this agreement as your acknowledgement of the UW Rules/Policy Statements listed below which govern your access to and right to use UW Information Systems or Institutional Information.

If you are not a UW employee, you are required to accept this agreement as your promise that you will abide by the UW Rules/Policy Statements listed below (whether or not they are written to apply to you) in exchange for the UW providing you access to and the right to use UW Information Systems or Institutional Information.

UW Rules/Policy Statements

The UW Rules/Policy Statements listed below govern your access to and the right to use UW Information Systems and Institutional Information. This list is not necessarily exhaustive. Other UW Rules/Policy Statements, as well as Policies, Standards and Guidelines in your UW organizational area, and state and federal laws, might apply to your activity. These include, but are not limited to, ethics laws and laws regarding maintenance and disclosure of public records.

• UW Administrative Policy Statement (APS) 2.1, UW Information Systems Security
• UW APS 2.10, UW Minimum Data Security Standards
• UW Institutional Data Management Standards

Summary of UW Rules/Policy Statements

Below are summaries of key points contained in the above listed UW Rules/Policy Statements. In the event of a conflict between these summaries and an actual Rules/Policy Statements, the language in the Rules/Policy Statements is controlling.

1. In accessing or using UW Information Systems or Institutional Information, you must follow all applicable laws and UW Rules/Policy Statements.
2. All who access or use UW Information Systems or Institutional Information must promptly report potential Information Security and Privacy Incidents. In the case of non-UW employees, the reports must be made to the UW employee who authorized their access or use.
3. You are required to protect against unauthorized access to your accounts, privileges, and associated passwords.
4. You are accountable for all activities associated with your accounts and the access privileges you have been assigned.
5. You may access and use UW Information Systems or Institutional Information only as necessary to fulfill job duties or activities authorized by the UW. If you are unsure whether an intended access or use is authorized, you should check with your supervisor, or in the case of non-UW employees, the UW employee who authorized your access and use.
6. You must be familiar with the UW methodology for classifying Institutional Information as Confidential Information, Restricted Information, or Public Information (as noted in the UW APS 2.10 UW Minimum Data Security Standards) and follow the UW Rules/Policy Statements for maintaining the confidentiality, integrity and availability of Institutional Information according to the classification.
7. When accessing Institutional Information or Institutional Systems with non-UW computing devices and systems, the devices and systems should have security measures and practices which meet or exceed those required by applicable UW Rules/Policy Statements.
8. You may not send unsolicited email to individuals that ask them to reply with Confidential Information or click on embedded links that immediately direct an individual to a web site that requires entry of Confidential Information.
9. You are discouraged from unnecessarily duplicating Institutional Information.

Enforcement

Failure to comply with laws or UW Rules/Policy Statements applicable to your access and use of UW Information Systems or Institutional Information may result in disciplinary action up to and including termination for UW employees; contract termination in the case of contractors or consultants; dismissal for interns and volunteers; or suspension or expulsion in the case of a student.