- Except where it is legally necessary or where a business necessity exists to collect a social security number, individuals will not be required to provide their SSN, verbally or in writing, at any point of service, nor will they be denied access to those services should they refuse to provide an SSN. Individuals may volunteer their SSN if they wish, as an alternate means of locating an institutional record.
- Grades and other student-related personal information will not be publicly published, posted, or displayed in a manner where either the SSN or Univ ID, or any portion thereof, identifies the individual associated with the information.
- The University will take reasonable precautions to protect the privacy of the SSN for all individuals who provide it, but the SSN must be available to University employees when required to complete the business of the University.
- Social security numbers will continue to be stored as a confidential attribute associated with an individual, where required as part of the institutional record.
- University units are responsible for protecting the confidentiality of data and information that may relate to students, patients, employees, and others served by the University community. Access to this information by University staff will be as required by job function and business necessity. Persons with such access will be required to sign a confidentiality agreement.
- Access to this information by non-University persons and entities will be governed by contractual agreements.
- Social security numbers will be transmitted outside the University only as required, and only through secure communication mechanisms.1 SSNs will be released by the University to entities outside the University only:
- as allowed by law;
- when permission is granted by the individual;
- when legal counsel has approved the release; or
- when the external entity is acting as the University's contractor or agent and adequate security measures are in place to prevent unauthorized dissemination to third parties.
- Paper documents and digital files containing SSNs will be stored securely; i.e., logical and physical security controls must be implemented to maintain the confidentiality and privacy of SSNs.
- Paper documents and digital files containing SSNs must be disposed of in a secure fashion, such as shredding documents and securely wiping digital storage. When SSN data is no longer needed, it should be permanently removed from digital files.
- Social security numbers will not be used as a primary identifier in databases. Other identifiers, such as Univ ID or an application-specific identifier, should be used in place of the SSN. Research studies that utilize SSNs in databases are recommended to replace the SSN with a numeric identifier, and maintain a logically and physically separate cross-walk of identifier to SSN, so that the SSN is never stored with other personally identifiable information.
- University applications with a requirement to utilize SSNs are strongly advised to be integrated with the University Vault system, which is the recommended method to securely store SSNs. Applications that cannot be integrated with the Vault must be registered with the Information Security and Policy Office in order to be closely monitored. (For Vault integration information, contact email@example.com.)
- Principles guiding the collection of SSNs include the following. All University forms and documents that collect SSNs will use such language to indicate whether the request is mandatory or voluntary.
- Applicants. The University will use SSNs to verify applicants' identity for record-keeping purposes and to help match transcripts and other materials with admission applications. In addition, the Office of Student Financial Aid will need to match applicants' admission status for any financial aid. The SSN will not be used as a student ID number. The SSN will not be displayed on official printed records.
- Students. Federal law requires students to use their SSN to apply for and receive financial aid. Federal law also requires that the University obtain and report to the Internal Revenue Service (IRS) the SSN for any person to whom compensation or financial aid is paid. The University also is required by federal law to report to the IRS the name, address, and SSN of any person from whom tuition and related expenses are received. The University will not disclose SSNs except where allowed by the Family Education Rights and Privacy Act ( FERPA).
- Faculty and staff. The University is required by federal law to report income along with SSN for all persons to whom compensation is paid. Employee SSNs are maintained and used by the University for payroll, reporting, and benefits purposes and are reported to federal and state agencies in formats required by law or required for benefits purposes. The University will not disclose an SSN for any purpose not consistent with applicable law.
- Research subjects. Subjects will be asked to provide basic information including name, mailing address, and SSN. This information allows the University to meet government reporting obligations. Subjects may be given the opportunity to waive receipt of payments should they decline to provide identifying information. The University of Iowa Institutional Review Board requires this notification in the language of the consent form.
- Other. Clinical and patient systems within The University of Iowa may be required to use the SSN for billing and health care coordination purposes. When the SSN identifies protected health information, its use also is regulated by the Health Insurance Portability and Accountability Act of 1996 (HIPAA).
1. Secure mechanism: transferred via a secure network isolated inside a physically secured campus facility, such as an Enterprise Data Center, transferred via a secure communication protocol, or encryption of the data prior to the transfer.