Third Party Services

Contracts between the District and third parties involving District Data must include language requiring compliance with all applicable laws, regulations, and District policies related to data and information security; immediate notification of the District if District Data is used or disclosed in any manner other than allowed by the contract; and, to the extent practicable, mitigate any harmful effect of such use or disclosure. For more detailed requirements, please refer to Appendix I.

Use of third party services that require any District data within the scope of this policy, must be approved by the App Review Committee or Chief Information Security Officer prior to use.

For a list of approved services, please visit: http://goo.gl/nhyds3 (embedded below)