SSN Policy Updates

SSN Policy Updates

The following table lists updates that have been made to the Social Security number policy of the University of Illinois.

 

Section Original Text Change Reason Date and Approval
I.2 "The UIN will be considered a public piece of information." Deleted FERPA defines a student's ID number as part of his or her educational record and is thus not public information. 10/4/2001 Approved by: SSN Coordinators
I.2.2 "The UIN will be maintained and administered by the Office of Administrative Information Technology Services (AITS)" Temporarily redlined Pending approval of a formal UIN policy developed by the iKey Committee. Click here for a preliminary draft of this policy. 10/4/2001 Approved by: SSN Coordinators
I.9 "The list of approved entities will be jointly maintained by the three campus offices responsible for Social Security number oversight" "The Social Security Number Coordinators will maintain the list of approved entities" Changed to reflect SSN policy governance structure. 10/4/2001 Approved by: SSN Coordinators
1.2.2 "The UIN will be maintained and administered by the Office of Administrative Information Technology Services (AITS)" "The UIN will be maintained and administered in accordance with the University of Illinois policy on the University Identification Number" UIN related policies produced by the iKey Project (www.ikey.uillinois.edu) were approved and adopted by the Provosts and Vice President for Academic Affairs.  4/25/2002 Approved by SSN Coordinators
1.2.3 "The UIN will be a component of a system that provides a mechanism for both the public identification of individuals and a method of authentication;" "The UIN will be a component of a system that provides a mechanism for the identification of individuals but will not be used for authentication or as a password;" UIN related policies produced by the iKey Project (www.ikey.uillinois.edu) were approved and adopted by the Provosts and Vice President for Academic Affairs.  2/9/2010 Approved by SSN Coordinators
1.2.4 "All services rendered by the University of Illinois and electronic business systems will rely on the identification and authentication services provided by this system." "The UIN may not be used for any part of a login;" Changed to reflect the UIN's new FERPA classifications. September, 2009 Approved by SSN Coordinators
2.1.8 "Authorize the use of Social Security numbers in new electronic business systems." "Authorize the use of Social Security numbers in all electronic systems. Systems collecting, storing, or using Social Security numbers must receive explicit permission to do so from the appropriate SSN Coordinator. Business cases supporting such requests must include the legal or functional requirement for using the SSN, detailed descriptions of the security precautions planned for such systems, and how prepared the unit is to cover the costs for any potential data breach. Units should assume a breach cost of $75 for each SSN stored by the proposed system."   3/14/2011 Approved by SSN Coordinators
Objective's Section .5 New list item "5. To ensure compliance with the Illinois Identity Protection Act (linked to http://www.ilga.gov/legislation/ilcs/ilcs3.asp?ActID=3174&ChapterID=2)” Modifications to meet the requirements of the Illinois Identity Protection Act 10/18/2012 Approved by SSN Coordinators
I.13 New list item "I.13 Individuals that are identified as having access to SSNs in the course of performing their duties must be provided with training materials on the proper handling of SSNs." Modifications to meet the requirements of the Illinois Identity Protection Act 10/18/2012 Approved by SSN Coordinators
I.14 New list item "I.14 Only employees that are authorized by the Social Security Number Coordinators are permitted to have access to SSNs.” Modifications to meet the requirements of the Illinois Identity Protection Act 10/18/2012 Approved by SSN Coordinators