Breach Notification Procedures

Personal Non-Public Information Policy

Protecting Personal Non-Public Information

Responsible Computing
A Manual For Staff

Computer Security at UD

IT Help Center

UD Home

What should notices include?

The final text that is used in any breach notification must be reviewed by the Office of Public Relations.

Notifications will vary depending on the circumstances of each system breach and could include the following elements:

• purpose of the letter;
• identity of the university department;
• what happened in general terms, including the dates of the security breach and of its discovery;
• what kind of personal information was involved;
• what they should do to protect themselves;
• where to go for more information;
• what you are doing, if anything, to investigate further;
• who to contact for more info

Sample Notification Text is intended to provide guidance to university departments in developing a notice to individuals whose personal information might have been involved in a computer security breach.

Back to Breach Notification Procedures

Questions / comments?
Copyright © 2005, University of Delaware