As part of doing business at an institute of higher learning and as an Internet Service Provider (ISP), MIT must ensure that individuals who use its IT resources are following the rules and legal requirements of the local, state and federal governments. DMCA (Digital Milennium Copyright Act), PCI-DSS (Payment Card Industry Data Security Standards), and the Massachusetts Data Privacy Law 201 CMR 17 are just a few regulations that MIT must comply with.
Compliance ensures that sensitive data is protected from fraud and prevents individuals from experiencing the negative side-effects of a data breach or copyright infringement.
- DMCA Agent at MIT: Notifies individuals at MIT if an infringement of copyright is suspected to have occurred on their device. This service attemps to minimize peer-to-peer file sharing and illegal downloading of copyrighted material.
- PCI compliance: The Office of the Vice President of Finance offers resources and works in collaboration with IS&T to ensure technical measures are in place to protect financial data.
- WISP (Written Information Security Program): MIT's response to the Standards for the Protection of Personal Information of the Residents of MA; as well as other laws and policies followed by MIT.
- Copyright at MIT: Learn what to do if you receive a notification regarding copyright infringement and how to be in compliance with the laws, policies and procedures of copyright at MIT. Various copyright-related resources and reference materials are also provided.
- Merchant services: Review the list of requirements to protect financial data as a merchant at MIT at the VPF website.
- Protection of personal information at MIT: Learn more about the steps and resources available to members of MIT at Information Protection @ MIT.