Skip to main content

Compliance @USU


The Family Educational Rights and Privacy Act (FERPA) prohibits USU from releasing personally identifiable information from a student’s record without  explicit consent. FERPA @ USU


The Institutional Review Board (IRB) at USU is a committee designated to review and approve research involving human participants. IRB@USU


The Payment Card Industry Data Security Standards (PCI DSS) is a set of industry security standard for how to store, process, or transmit cardholder data. PCIDSS@USU


Red Flags Rule

The Federal Trade Commission's (FTC) Red Flags Rule is designed to detect, prevent, and mitigate identify theft in connection with covered accounts. RedFlagsRule@USU


The Health Insurance Portability and Accountability Act (HIPAA) defines patient's rights for accessing their medical information and outlines the privacy and security rules for protecting health information within USU's Health Care Components.  HIPAA@USU

Export Controlled Information

Information that falls under the protection of the U.S. Department of Commerce and Defense or other federal government agencies that must be protected from unauthorized access and maintain specific security controls. ExportControl@USU

Environmental Health & Safety

Environmental Health & Safety Office at USU provides expertise and advice for compliance with federal, state and local safety and health regulations.  EHS@USU

Employee Privacy

The University respects the individual privacy of its employees. Human Resources at USU oversees employment, policies, wellness, payroll and benefits for employees.  HR@USU

The protection of information is important to USU. Our Compliance Officers are responsible for the creation and maintenance of compliance and ethics program that supports the University’s Mission and strategic goals.