Regulatory Compliance

DG Regulatory Compliance

Purpose

Organizational Data must be closely managed to verify compliance with applicable federal, state, local, and international laws and regulations as well as specifications contained in Georgia Tech grants, contracts, and other agreements entered into by, or for the benefit of, Georgia Tech. Every role within the data governance structure shares a responsibility of having a general understanding of legal, regulatory, and other specifications surrounding Organizational Data and Information Systems.

 

Go to Procedures
Go to Resources

 

Related Policies

Data Governance and Management Policy

Related Guidelines, Procedures and Resources

Definitions

Capitalized terms not otherwise defined herein shall have the same meaning as set forth in the Data Governance and Management Policy

Audience

Responsible Data Steward
Technical Manager
Accountable Associate Data Trustee
System Owner
Support General Counsel
Consulted Data Governance team
Informed Data Governance Committee
Data Domain & Technology Sub-Committees
Data User

Procedures

Assigning a “Data Regulation Categorization”
Please reference Data Regulation Categorization Procedures and Resources.

Resources

Key Contacts for Regulated Data
Please reference Data Regulation Categorization Procedures and Resources.
Where can I find more information on FERPA?
  • Georgia Tech Catalog: Family Educational Rights and Privacy Act (FERPA) and Applicant Records (link)
  • Georgia Tech Registrar’s Office: About FERPA (link)
  • U.S. Department of Education: Family Educational Rights and Privacy Act (FERPA) (link)
Where can I find more information on HIPAA?
  • Georgia Tech Stamps Health Services: HIPAA Designation (link)
  • Georgia Tech Stamps Health Services: Policies (link)
  • USG Legal Affairs: Policies & Procedures for HIPAA Compliance (link)
  • U.S. Department of Health & Human Services: Health Information Privacy (link)
Where can I find more information on GLBA?
  • Georgia Tech Policy Library: GLBA Information Security Program (link)
  • U.S. Federal Trade Commission: Gramm-Leach Bliley Act (link)
  • U.S. Department of Education: Federal Student Aid February 28, 2020, Memo (link)
Where can I find more information on EU GDPR?
  • Georgia Tech Policy Library: EU General Data Protection Regulation Compliance Policy (link)
  • Georgia Tech: EU GDPR (link)
  • European Union: EU Data Protection Rules (link)
Where can I find more information on research requirements?
  • Georgia Tech Office of Research Integrity (link)
Where can I find more information on export control?
  • Georgia Tech Office of Research Integrity (link)
Where can I find more information on Georgia Open Records Act?
  • Georgia Tech Policy Library: Open Records Act Policy (link)
  • State of Georgia Office of the Attorney General: Open Government (link)

 

Revision Date Author Description
2021-07-27 Zachary Hayes, Data Governance New