Protecting personal information is important to West Virginia University.
Our privacy practices are guided by the University's Information Privacy Policy and Protected Health Information Privacy Policy, which state that we will strive to limit the amount of personal information we collect and secure the personally identifiable information that is collected.
Our privacy and security policies and procedures establish best practices to lower the risk of exposure and are governed by the following federal and international regulations:
- FERPA. The Family Educational Rights and Privacy Act of 1974 (FERPA) grants WVU students the right to privacy over their education records. For more information about how we protect student data and students' rights under FERPA, visit the University's FERPA webpage.
- HIPAA. The University is designated as a hybrid entity under the Health Insurance Portability and Accountability Act (HIPAA) of 1996. All named University Health Care Components must implement data privacy and security provisions to safeguard information protected health information.
- GLBA. The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA), includes provisions to protect consumers’ personal financial information which includes student financial information gathered through the Department of Education federal student aid program.
- GDPR. The General Data Protection Regulation (GDPR) provides additional privacy rights for residents of European Union member states, as well as non-EU citizens located in an EU member state. To learn more, visit our GDPR privacy page.
Information Security Services works to both ensure that only appropriate identifiable information is collected and ensures that the data WVU collects is secured appropriately.