Author: Brandon Murray

Mobile and Remote Device Security Policy

Title: Mobile and Remote Device Security, Information Technology 
Policy Owner: Information Technology Services / Chief Information Security Officer 
Applies to: All faculty, staff, student employees, and volunteers   
Campus Applicability: All campuses except UConn Health 
Effective Date: August 30, 2021
For More Information, Contact UConn Information Security Office 
Contact Information: techsupport@uconn.edu or security@uconn.edu 
Official Website: https://security.uconn.edu/

PURPOSE 

To ensure data and information systems security by establishing requirements for mobile and remote devices.  Mobile and remote devices are important tools for the University, and their use is supported to advance the mission of the university. Mobile and remote devices also represent a significant risk to information and data security. If appropriate security measures and procedures are not applied, mobile and remote devices can serve as a conduit for unauthorized access to University data and IT resources that can subsequently lead to data leakage and a path for compromise of other systems. 

APPLIES TO 

This policy applies to all University faculty, staff, student employees, and volunteers who use mobile or remote devices to access any non-public IT resources owned or managed by the University. 

DEFINITIONS 

IT Resources: Includes systems and equipment, software, and networks. Systems and equipment include but are not limited to computers, hard drives, printers, scanners, video and audio recorders, cameras, photocopiers, and other related devices. Software includes but is not limited to computer software, including open-source and purchased software, and all cloud-based software, including infrastructure-based cloud computing and software as a service. Networks include but are not limited to all voice, video, and data systems, including both wired and wireless network access across the institution. 

Mobile Electronic Device: Includes telecommunication and portable computing devices which can execute programs or store data, including but not limited to laptops, tablet computers, smartphones, and external storage devices. Generally, a device capable of using the services provided by a public/private cellular, wireless, or satellite network. 

Remote Device: Personal computer used off-site 

POLICY STATEMENT  

University of Connecticut faculty, staff, student employees, and volunteers who use mobile or remote devices are responsible for any institutional data that is stored, processed, and/or transmitted via a mobile or remote device and for following the security requirements set forth in this policy. 

To adequately protect the data and information systems of the University, all individuals covered under this policy are expected to meet the following requirements: 

All users of a mobile electronic device used to access non-public university systems must take the following measures to secure the device: 

  • Configure the device to require a password (minimum of 10 characters), biometric identifier, PIN (minimum of 6 characters), or swipe gesture (minimum of 6 swipes) to be entered before access to the device is granted. Device must automatically lock and require one of the authentication methods after no more than 5 minutes of idle time. 
  • Keep devices on currently supported versions of the operating system and remain current with published patches. 
  • Enable the device’s remote wipe feature to permit a lost or stolen device to be securely erased. 
  • Securely store electronic devices at all times to minimize loss via theft or accidental misplacement. 

    Wherever practical, elements of these requirements will be enforced via centrally administered technology controls.  

    STORAGE OF CONFIDENTIAL DATA 

    In general, confidential data should not be stored on mobile devices, including laptops. However, in certain instances and depending on job responsibilities, this may be unavoidable. In these instances, confidential data must be stored on university-owned devices ONLY with the following requirements: 

    • Except when being actively used, confidential information must at all times be encrypted on any device through a mechanism approved by the University. Alternatively, whole drive encryption software may be deployed to meet this requirement. 
    • Mobile devices must have university-supported software enabled and running to identify, protect, and respond to any threats to the data or operating systems of the devices. 
    • Devices must have Mobile Device Management software installed to facilitate device protection, including remote wipe and, if possible, device location technology for recovery. 

    DEVICE DECOMISSION OR SEPARATION FROM UNIVERSITY 

    When mobile devices, specifically personally owned devices that may have had access to University resources or data, are no longer used, and donated, or given to anyone, the device owner is responsible for ensuring that any University information is securely deleted from the device, including University-related e-mails/accounts, user ID and password, or other cached credentials used to access University systems. 

    In the event of separation from the University, it is the employee’s responsibility to delete any University-related e-mail accounts or University licensed software that may have been installed on personal devices or computers. 

    ENFORCEMENT 

    Violations of this policy may result in appropriate disciplinary measures in accordance with University By-Laws, General Rules of Conduct for All University Employees, applicable collective bargaining agreements, and the Student Code. 

    Questions about this policy or suspected violations may be reported to any of the following: 

    Office of University Compliance –  https://compliance.uconn.edu (860-486-2530) 

    Information Technology Services Tech Support –  https://techsupport.uconn.edu (860-486-4357) 

    Information Security Office – https://security.uconn.edu 

     

    POLICY HISTORY 

    Policy created:  August 30, 2021 [Approved by President’s Senior Team] 

    System and Application Security Policy

    Title: System and Application Security Policy 
    Policy Owner: Information Technology Services / Chief Information Security Officer 
    Applies to: All students, faculty, and staff  
    Campus Applicability: All campuses except UConn Health 
    Effective Date: August 30, 2021
    For More Information, Contact UConn Information Security Office 
    Contact Information: techsupport@uconn.edu or security@uconn.edu 
    Official Website: https://security.uconn.edu/

    PURPOSE 

    To ensure the security of university data by establishing requirements for the proper maintenance and oversight of systems and applications used by university constituents. 

    APPLIES TO 

    This policy applies to all individuals responsible for operating or overseeing any University system or application, whether on premise or in the cloud. 

    DEFINITIONS  

    ITS: Information Technology Services 

    SaaS: Cloud-based service that is delivered via the web based on either a monthly or annual subscription 

    PaaS:  Cloud-based service that provides a platform allowing for the development of software using an established framework to improve development time and management of cloud services 

    PII (Personally Identifiable Information):  Information that either singularly or in conjunction with other data elements could reasonably lead to the identification of specific individuals 

    POLICY STATEMENT  

    The proper maintenance and review of systems and applications is critical to protecting the data they store or process. While requirements may vary as to the administration and operation of any system or application, the following are required of any individual responsible for a system or application related to the University of Connecticut’s computing environment, whether on-premise or in the cloud. 

    System Ownership 

    All systems supporting any aspect of the University must have an identified owner and responsible party for ensuring the controls specified in this document. For a system that is fully cloud-based, a UConn faculty or staff member is responsible for overseeing that the following controls are appropriately applied and adhered to by the cloud provider.  

    System and Application Security 

    All software and services used to process University of Connecticut information are subject to an Information Security review and sign off prior to their purchase or development. Information Security reviews will evaluate specific risks and controls available and necessary based on the information being processed. The system owner will be responsible for the deployment of the agreed upon security controls prior to enabling the production capability of the system or application. 

    Only necessary software should be loaded on systems, and old versions of software removed. The use of web browsers should be limited to the management of the system only. 

    System Access 

    Access to information in the possession of or under the control of the University of Connecticut must be provided on a need-to-know basis. Information must be disclosed only to individuals who have a legitimate and approved business need for information. Information may only be used for its intended purpose, and other uses of university information without the approval of the data owner is not allowed.  

    Patching and Maintenance 

    All individuals, including faculty, staff, or students, who have taken on or been assigned the responsibility of managing any system or application attached to the University of Connecticut network or any cloud system that holds a relationship to the University of Connecticut or holds University of Connecticut data, must ensure the timely implementation of operating systems and application patches to provide for the confidentiality, integrity, and availability of said systems or data. The ongoing maintenance of applications and the application of software updates is an activity that must be regularly scheduled on a minimum quarterly basis. ITS and many other parts of the University maintain systems to simplify the patching of operating systems. 

    Cloud-based SaaS and PaaS systems typically remove the requirement for patching and maintenance, as the responsibility for this is handled by the vendor. 

    User Management 

    University of Connecticut Information Technology Services (ITS) provides centralized user identity and access management that supports identity validation and access management (IAM) using a NetID and password. Systems and applications that rely on the University IAM platform for authenticating individual access rights can forgo the need for user management outside that of assigning any roles within the system or application, as necessary. 

    Systems and applications that do not use the central IAM solution must have a written plan and designated individual responsible for the creation, modification, and deletion of user IDs. User IDs, including student accounts, must be reviewed when faculty, staff, or students separate from the University at least annually. This includes a process for ensuring the secure creation of passwords and a secure password reset process for validating an individual’s identity prior to resetting the password. 

    Systems where individuals have access to a significant amount of the PII of other constituents, including students, faculty, staff, alumni, and vendors, or significant amounts of regulated data should leverage multi-factor authentication wherever possible. 

    Auditing of Systems and Application Logs 

    System and application logs should be reviewed for inappropriate access on a regular basis (at least monthly) or via automated systems capable of detecting misuse through the analysis of frequent password failures, geographic anomalies, or inappropriate access attempts. ITS maintains a centralized logging and reporting platform, which can assist in the analysis of large amounts of data often associated with system and application logs. 

    System and Application Lifecycle Management 

    Any system or application that is no longer supported by the vendor or is replaced by newer technology should be decommissioned as soon as possible. The proper update of systems and applications is critical to protecting the confidentiality, integrity and availability of the system or application and its data. The decommissioning process must include the proper retirement of any physical hardware or virtual images and the proper destruction of any media (e.g., hard drives, tapes, etc.) that may have data. Cloud services that are decommissioned should ensure the proper handling of any data (return and/or destruction) in the cloud vendor’s possession as part of the contract cancellation. 

    Protection of Regulated Data 

    Certain classes of information stored within University of Connecticut systems and applications have additional regulatory requirements associated with their storage and/or transmission. This data includes but is not limited to: Personally Identifiable Information (PII), including certain combinations of data regarded as sensitive PII; Personal Health Information (PHI), Payment Card Industry (PCI) information, or any information subject to the Family Educational Rights and Privacy Act (FERPA).  The University must also comply with any additional protections of information or datasets contractually required by other agencies or organizations.  

    Mandatory Reporting 

    All suspected policy violations, system intrusions, and other conditions that might jeopardize University of Connecticut information or information systems must be immediately reported to the Information Security Office. 

    ENFORCEMENT 

    Systems and applications that do not follow the standards set forth in this policy may be administratively shut down or have access restricted to on-campus or individual personnel only. Systems maintained at the departmental or individual level may incur costs in association with enabling the proper protections or in the event of data exposure. 

    Violations of this policy may result in appropriate disciplinary measures in accordance with University By-Laws, General Rules of Conduct for All University Employees, applicable collective bargaining agreements, and the Student Code.  

    PROCEDURES/FORMS 

    Questions about this policy or suspected violations may be reported to any of the following: 

    Office of University Compliance –  https://compliance.uconn.edu (860-486-2530) 

    Information Technology Services Tech Support –  https://techsupport.uconn.edu (860-486-4357) 

    Information Security Office – https://security.uconn.edu 

     

    POLICY HISTORY 

    Policy created: August 30, 2021 [Approved by President’s Senior Team]

     

    Firewall Policy

    Title: Firewall Policy 
    Policy Owner: Information Technology Services / Chief Information Security Officer 
    Applies to: All students, faculty, and staff responsible for configuring firewalls 
    Campus Applicability: All campuses except UConn Health 
    Effective Date: August 30, 2021
    For More Information, Contact UConn Information Security Office 
    Contact Information: techsupport@uconn.edu or security@uconn.edu 
    Official Website: https://security.uconn.edu/

    PURPOSE 

    To ensure a common set of firewall configurations across the organization to maximize their protection and detection capabilities in support of the security of the University. Firewalls provide a valuable protection and detection capability for the organization when properly configured, managed, and monitored.  

    APPLIES TO 

    This policy applies to all University faculty, staff, students, student employees, volunteers, and contractors who have responsibility for controlling or configuring firewalls. 

    DEFINITIONS 

    EOL: End of Life 

    EOS: End of Support 

    IANA: Internet Assigned Numbers Authority (iana.org)  

    POLICY STATEMENT  

    The University operates in a highly flexible and adaptive security environment to meet its academic, research, and administrative missions. While the ability to adapt to meet the ever-changing needs of the University is important, oversight and reporting of firewall activities are critical to the successful protection and operation of the University environment. The following firewall requirements must be met: 

    Firewall Configuration Standards 

    • All firewalls must be properly maintained from a hardware and software perspective. This includes proper lifecycle planning for EOL and EOS software/hardware and regular review (at least annually) of firewall rulesets. 
    • All dedicated firewalls used in production must follow the University firewall management standard, which includes the ability to review currently configured firewall rules across the organization, identification of shadow or redundant rules and rules in conflict, and standardization of device/object names.  
    • Firewall rulesets and configurations must be backed up frequently to alternate storage (not on the same device). Multiple generations must be captured and retained in order to preserve the integrity of the data, should restoration be required. Access to rulesets, configurations and backup media must be restricted to those responsible for administration and review. 

    Firewall Rules 

    Firewall rules specify (either allow or deny) the flow of traffic through the firewall device. Firewall rules are typically written based on a source object (IP address/range, DNS Name, or group), destination object (IP address/range, DNS Name, or group), Port/Protocol and action. 

    • All firewall implementations should adopt the principal of “least privilege” and deny all inbound traffic by default. The ruleset should be opened incrementally to only allow permissible traffic. 
    • Outbound traffic should be enumerated for data stores, applications, or services 
    • Overtly broad rules may be allowed for specific groups of individuals (not systems). Approval must be granted by the Chief Information Security Officer or their designee. 
    • The use of overly permissive firewall rules is prohibited (i.e., ANY/ANY/ALL rules). 
    • Protocols defined in services and in the firewall must utilize Service Name and Protocol/Port information as assigned by IANA, unless there is a technical reason to do otherwise other than “security through obscurity” and must be commented appropriately in the ruleset.  

      Firewall Logging 

      Firewall log integrity is paramount to understanding potential threats to the network. Firewall devices must log the following data to a system outside of the physical firewall itself and must be regularly reviewed at least monthly or programmatically through automated means. Firewall logs may be forwarded to the ISO SIEM for retention and analysis. 

      The following items must be logged as part of the operation of the firewall: 

      • All changes to firewall configuration parameters, enabled services, and permitted connectivity 
      • Any suspicious activity that might be an indicator of either unauthorized usage or an attempt to compromise security measures 

      ENFORCEMENT 

      Violations of this policy may result in appropriate disciplinary measures in accordance with University By-Laws, General Rules of Conduct for All University Employees, applicable collective bargaining agreements, and the Student Code.  

      Questions about this policy or suspected violations may be reported to any of the following: 

      Office of University Compliance –  https://compliance.uconn.edu (860-486-2530) 

      Information Technology Services Tech Support –  https://techsupport.uconn.edu (860-486-4357) 

      Information Security Office – https://security.uconn.edu 

       

      POLICY HISTORY 

      Policy created: August 30, 2021 [Approved by President’s Senior Team]

      The Provost’s Professional Internship Program for Public Outreach, Service, and Engagement

      Title: The Provost’s Professional Internship Program for Public Outreach, Service, and Engagement
      Policy Owner: The Graduate School
      Applies to: Graduate Students
      Campus Applicability:
      Effective Date: January 9, 2013
      For More Information, Contact Office of the Vice Provost for Graduate Education and Dean
      Contact Information: 860-486-3617
      Official Website: http://grad.uconn.edu/

      Graduate students are often supported by a graduate assistantship awarded for performing research or teaching functions at the University. The University covers tuition expenses for those students. In addition, the University may cover tuition expenses of students who are funded by a grant that does not cover the cost of the student’s tuition.

      The University recognizes the value of supporting graduate student professional development activities that extend beyond on-campus research and teaching. The Provost may determine that the University will cover tuition expenses for graduate students engaged in other activities directly related to the University’s mission and directly aligned to a student’s academic program of study. The circumstances under which the University will cover tuition expenses and provide a health insurance subsidy for such students are very limited and based on compelling evidence that the activity supports important academic objectives, such as professional internships required as an integral component of a graduate educational program. The Provost will evaluate such activities on a case-by-case basis using the following criteria:

      • The substantive focus of the graduate internship must serve a clear public service, public outreach, or engagement purpose.
      • The graduate internship’s objectives must support the academic mission of the University and align directly with the goals of the University’s Academic Plan.
      • The graduate internship must be established as a required component of the academic program in which the participating students are enrolled.
      • It must be demonstrated that the viability of the internship program is threatened if tuition is not covered.
      • The graduate internship must be credit-bearing, be directed by an instructor of record, and must require students to produce an academic work product.
      • The paid internship experience for the student must include compensation equivalent to or higher than that of a Level I graduate assistant for the academic year.
      • The graduate student interns must be placed in a sponsoring organization that provides at least partial support for the graduate student, including paying the student’s stipend and benefits.
      • The graduate students participating in the internship must serve their internships in public or nonprofit organizations with a clear public service mission.
      • The term of tuition coverage associated with a graduate internship will not exceed four semesters per student.
      • The graduate students participating in the internship must be in good academic standing.

      For student tuition to be covered and for a health insurance subsidy to be provided by the University under this program, the Dean of the School or College that houses the internship program must present appropriate justification to the Provost.

      The academic programs currently included in this program are available here.

      Relocation and Moving Policy

      Title: Relocation and Moving Policy
      Policy Owner: Office of the Provost / Department of Human Resources
      Applies to: Designated Full-time Faculty, Athletics, Librarians, Management Exempt, and Management Exempt positions with faculty titles
      Campus Applicability:  All Campuses except UConn Health
      Effective Date: February 25, 2021
      For More Information, Contact Office of the Provost or Human Resources
      Contact Information: Provost@uconn.edu / HR@uconn.edu
      Official Website: http://www.policy.uconn.edu

      REASON FOR POLICY

      The University recognizes the competitive nature of the hiring process and therefore grants the flexibility to reimburse or pay for actual relocation expenses for designated full-time faculty, athletics, management-exempt administrators.

      POLICY STATEMENT

      The relocation policy and procedures establishes the nature of expenses that can be direct billed or reimbursed from the University, limits on these expenses, and a timeframe of when these expenses can occur.

      POLICY

      1. In the offer of employment, the University may include an offer to reimburse and/or provide direct payment for allowable moving expenses required for relocation up to the amount specified in the table set forth in paragraph 15 herein.
      2. All reimbursement or direct payments for relocation expenses are includable in the employee’s taxable wages.
      3. Designated faculty includes tenured and tenure-track faculty, management-exempt employees with a base faculty appointment, in-residence faculty, clinical faculty, extension faculty, and  librarians.
      4. Direct billing cannot be used for moves that occur during November or December.
      5. The hiring process includes three phases: interview, offer and acceptance, and move. The final phase, the move, begins the date of the final one-way trip of the selected candidate and their  family to their new residence. The move phase ends upon the day of arrival. Only expenses incurred in connection with the move phase are covered by this policy. Common relocation expenses include (where relevant, this covers the employee and one immediate family member, defined as spouse or child):
        • Transportation of household goods
        • Airfare, in accordance with the University Travel Policy
        • Car rental (through the day of arrival), or mileage at the standard IRS medical/moving mileage rate, in accordance with the University Travel Policy
        • Lodging (only during the one-way trip of the move phase, ending on the day of arrival), in accordance with the University Travel Policy
        • Meals during travel (excluding alcohol), in accordance with the University Travel Policy
        • Shipping of car
        • Storage of household goods after arrival; not to exceed 30 consecutive days after date goods are moved from the former residence
      6. Employees will be reimbursed for the shortest, most direct route available. Travel incurred for side trips or vacations en route, etc. may proportionally reduce the amount of moving  expenses an employee is eligible to receive.
      7. The following types of non-business expenses, included but not limited to, will not be paid or reimbursed as part of relocation expenses:
        • Entertainment
        • Side trips, sightseeing
        • Violations (parking tickets, moving violations, )
        • Return trips to former residence
        • Expenses related to former residence
        • General repairs or maintenance of vehicle resulting from self-move
        • Temporary accommodation in the new location beyond the day of arrival
      8. Individuals should refer to the Reimbursement of Recruitment Expenses Policy for guidance regarding appropriate payment or reimbursement of expenses related to the “interview” and  “offer and acceptance” phases. Relocation payments are not intended to cover any travel expenses incurred during these two earlier phases.
      9. The cost associated with the relocation of a laboratory, professional library, scholarly collection and/or equipment (scientific, musical, etc.) are excluded from this policy as they are not   considered household goods or personal effects. If relevant for business purposes, costs associated with moving such materials should be negotiated separately.
      10. This policy applies to new employees whose move exceeds 50 miles and who are moving to within 35 miles of the primary campus at which they will be working. Exceptions to this rule may   be made by a Dean, the Director of Athletics, or by the appropriate EVP if a) they think that a move is reasonable given the commuting distance that the new employee would be facing, or b)   the new residence of the employee will be close enough to the primary campus at which they will be working so that they will reasonably be able to relocate there and perform their duties.
      11. Relocation expenses will only be covered by this policy if they occur within 12 months of the new start date of an employee.
      12. If employment with the University ends in a voluntary separation prior to working at least thirty-nine (39) weeks on a full-time basis in the first twelve months after starting employment,   the employee must reimburse the University the full amount of relocation expenses paid by the University.
      13. Exceptions to extend applicability beyond these employees require a business justification and must be explicitly approved by the Director of Athletics, EVP, or President as appropriate.
      14. The President will recommend an amount for reimbursement and/or direct payment for the Executive Vice Presidents/Provost to the Board. The Chairman of the Board will recommend an   amount for reimbursement and/or direct payment for the President to the Board.
      15. The formula for determining the amount to be reimbursed is based on the distance of the move. This figure represents the maximum reimbursement allowed. The allowance for a move   constitutes the maximum commitment for reimbursement of University and/or Foundation funds, rather than an entitlement of the employee. The figure is also the maximum amount the   University will pay when the direct bill option is selected. The formula is calculated according to the distance of the move, as follows:
      Mileage Reimbursement of expenses up to:
      ≤ 1,000 miles $2,000
      ≤ 1,500 miles $2,500
      ≤ 2,000 miles $3,000
      ≤ 2,500 miles $3,500
      ≤ 3,000 miles $4,000
      1. It may be the case that the competitive hiring practices of a specific field require exceptions to this policy. Exceptions that involve costs of up to 200% of the standard formula may be approved by the Dean, Director of Athletics, or EVP as appropriate. Exceptions above 200% of the standard formula or involving other requirements of the policy will require documentation of the business justification for the requested exception and these require approval by the EVP or President as appropriate.

      PROCEDURES

      Relocation and Moving Procedures are located here. Upon acceptance, the University’s contracted relocation services provider, Signature Relocation, will contact the employee directly to assist the employee with their relocation.

      ENFORCEMENT

      Violations of this policy or associated procedures may result in appropriate disciplinary measures in accordance with University By-Laws, General Rules of Conduct for All University Employees, applicable collective bargaining agreements, the University of Connecticut Student Code, or other applicable University Policies.

      RELATED POLICIES

      Reimbursement of Recruitment Expenses, Policy on

      POLICY HISTORY

      Policy Created:  07/01/2003 (Reimbursement of Recruitment and Moving Expenses Policy approved by Board of Trustees)

      Revisions:

      08/07/2013 (Reimbursement of Moving Expenses Policy and Procedures approved by Board of Trustees)

      11/21/2014 (Procedural revisions to Reimbursement of Moving Expenses Policy and Procedures)

      02/24/2021 (Relocation and Moving Policy approved by Board of Trustees)

      Provost’s Policy on Faculty Leaves

      Title: Provost’s Policy on Faculty Leaves
      Policy Owner: Office of the Provost
      Applies to: Faculty
      Campus Applicability:
      Effective Date: July 13, 2015
      For More Information, Contact Office of the Provost
      Contact Information: (860) 486-4037
      Official Website: http://provost.uconn.edu/

      Please see the following July 13, 2015, memo from Provost Mun Choi regarding Faculty Leaves and proper administrative notification: Administrative Notification of Faculty Leaves, July 13, 2015.

      Policy on Competitive Non-Federal Graduate Fellowship Awards

      Title: Policy on Competitive Non-Federal Graduate Fellowship Awards
      Policy Owner: Graduate School
      Applies to: Graduate Students
      Campus Applicability:  All Campues excluding the School of Law. Includes Masters/PhD. programs at UConn Health
      Effective Date: July 17, 2013
      For More Information, Contact Graduate School
      Contact Information: (860) 486-2182
      Official Website: http://grad.uconn.edu/

       

      1. The University is committed to enhancing the number of nationally competitive fellowships and awards from prestigious organizations.

      2. While these awards may provide students with a full fellowship and payment of some portion of tuition and/or health insurance premiums, there is often a significant shortfall in the award for coverage of the total cost of tuition and health insurance premiums.

      The University of Connecticut has developed this policy to fund the difference between the amount awarded (by the granting agency) and the actual cost to the fellow for tuition and health insurance premiums.  This policy applies to fellowships that provide a stipend equal to or more than a full nine-month UConn graduate assistantship at the level appropriate for the student’s status at the time the award begins.

      3. The fellow’s home department will notify the Dean of the Graduate School when a student receives a fellowship eligible for University support under this policy.  For a limited number of students who receive the most prestigious non-federal fellowships, the University will supplement the fellowship to cover the actual cost of tuition and health benefits (but not University fees).

      4. The PI or the faculty advisor/graduate student must apply for any cost of education (tuition) and the health insurance premium allowance permitted for that award.  Any institutional allowance or educational allowance accompanying these awards must first be used to cover tuition and then health insurance premiums.  Unless there is a specific statement in the fellowship description, the educational allowance will not be used to pay university fees.

      If funds are available after payment of tuition, health insurance premiums and university fees (if allowed by the grant), they can be used to cover any educational allowance specifically identified in the sponsor guidelines for research supplies, equipment, books, travel to meetings, etc.

      5. The fellow’s share of the health insurance premium (or the fellow and his/her dependents) will not exceed those currently charged to graduate assistants within the same plan, and must be paid by the fellow.

      6. Unless otherwise disallowed, out-of-state students supported on a fellowship under this policy must apply for in-state residency status by the end of the first year. After the first year, only the equivalent of the in-state tuition rate will be covered if the student remains an out-of-state student.  The difference will be the student’s responsibility.

      7. Please note that it is not the intention of this policy to supplement University Fees.  University Fees may be paid up to the maximum allowable from the grant if budgeted as an allowable cost on the award.  If there is a shortfall in the grant award for fees, the responsibility to pay the balance will reside with the student.

      Applying for In-State Residency

      Graduate students who wish to apply for in-state residency status should submit the Application for In-State Tuition form to:

      UConn Graduate Admissions Office
      Residency Officer
      The Graduate School
      438 Whitney Road Ext. U-1152
      Storrs, CT 06269

      The application is available at http://grad.uconn.edu/wp-content/uploads/sites/1635/2015/04/instatetuition.pdf.

      ______________________________

      Kent E. Holsinger

      Vice Provost for Graduate Education

      and Dean of the Graduate School

       

      Policy Adopted:  9-5-12

      Policy Revised: 12-14-12, 7-17-13

      Missing Student Policy

      Title: Missing Student Policy
      Policy Owner: UConn Police Department
      Applies to: Faculty, Staff, Students
      Campus Applicability:  Storrs
      Effective Date: August 18, 2016
      For More Information, Contact Captain Maggie Silver
      Contact Information: 860-486-4800
      Official Website: http://www.police.uconn.edu/

      If a member of the university community has reason to believe that a student is missing, whether or not the student resides on campus, all possible efforts will be made to locate the student to determine his or her state of health and well-being through the collaboration of UConn Police, Dean of Students Office, Residential Life staff, and local law enforcement.

      At the beginning of each year or upon matriculation, all students are given the opportunity to identify an individual to be contacted by the University in case of emergency.

      This contact information is subject to the University’s FERPA Policy. (See: http://policy.uconn.edu/?p=368).

      In addition, consistent with Clery Act requirements, all students living in on-campus housing are also given the option each year, or upon moving into on-campus housing, to designate a confidential contact for use in case the student is reported missing.  Although the same contact may be provided for both purposes, by law the missing student contact is distinct from the general emergency contact provided by all students, and is held to a higher standard of confidentiality than the general emergency contact.  It will be accessible only to authorized University personnel, and disclosed only to law enforcement personnel in furtherance of an investigation.  To help ensure timely and complete notification and investigation of all missing student situations, confidential missing student contact should be provided or updated at: https://student.studentadmin.uconn.edu/psp/CSPR/EMPLOYEE/HRMS/c/CC_PORTFOLIO.SS_CC_EMERG_CNTCT.GBL.

      If a member of the university community has reason to believe that any student is missing they should immediately contact UConn Police at 860-486-4800.  

      In missing persons cases, time is of the essence. Hence, we urge the community to contact UConn Police immediately upon suspicion that an individual is missing.  The UConn Police Department is committed to begin an investigation upon the first report.

      The UConn Police department will initiate formal investigation or contact the appropriate law enforcement agency.

      UConn Police will communicate and collaborate as appropriate with one or both of the following departments:

      • Dean of Students Office at (860) 486-3426
      • Residential Life Staff at (860) 486-9000

      Within 24 hours of the determination that a residential student is a missing person, UConn Police will:

      • Notify the local law enforcement agency with jurisdiction, if other than UConn Police;
      • Notify the student’s designated missing person contact;
      • If the student is under the age of 18 years and is not emancipated, notify the student’s custodial parent or guardian

      However, if the student is under 18 and is not an emancipated individual, UConn Police will notify the student parent or guardian as well as any other designated missing person contact.

       

      Credit Hour

      Title: Credit Hour
      Policy Owner: Office of the Provost
      Applies to: Students
      Campus Applicability:
      Effective Date: August 15, 2012
      For More Information, Contact Office of the Provost
      Contact Information: (860) 486-4037
      Official Website: http://provost.uconn.edu/

       
      The University of Connecticut, as mandated by the U.S. Department of Education and the New England Association of Schools and Colleges, and following Federal regulation, defines a credit hour as an amount of work represented in intended learning outcomes and verified by evidence of student achievement that is an institutional established equivalence that reasonably approximates not less than –

      (1) One hour of classroom or direct faculty instruction and a minimum of two hours of out of class student work each week for one semester or the equivalent number of hours of instructional and out of class work for shorter sessions (e.g. summer); or

      (2) At least an equivalent amount of work as required in paragraph (1) of this definition for other academic activities as established by the institution including laboratory work, internships, practica, studio work, and other academic work leading to the award of credit hours.

      Instruction and out of class work increase commensurately, for courses consisting of two, three, four, five or more credit hours.

       

      Policy Created: August 15, 2012

      Parking and Vehicles on the Grounds of the University of Connecticut, Rules and Regulations for the Control of

      Title: Rules and Regulations for Control of Parking and Vehicles on the Grounds of the University of Connecticut
      Policy Owner: Transportation, Logistics, and Parking Services
      Applies to: Faculty, Staff, Students, Visitors
      Campus Applicability:  Storrs and Regional Campuses
      Effective Date: July 11, 2017
      For More Information, Contact Transportation, Logistics and Parking Services
      Contact Information: (860) 486- 3628
      Official Website: https://park.uconn.edu/

      The complete Rules and Regulations for the Control of Parking and Vehicles on Campus (Revised 11.21.18) are available in PDF.

      Approved by the Board of Trustees on August 8, 2012.

      Revised July 11, 2017 and approved by the President’s Cabinet.