University Committee for the Protection of Personal Data (UCPPD)

UCPPD provides processes and structures for best practices regarding the security and protection of personal data in possession of the University, including:

  • Review current campus collection and uses of social security numbers and other personal identifying information as defined by the North Carolina Identity Theft Protection Act.
  • Approving or disapproving such collection and use of personally identifiable information.
  • Reviewing security measures associated with hard copy forms and electronic templates that contain personally identifiable information.
  • Documenting the University’s processes for the collection and use of personally identifiable information (including Social Security numbers).
  • Recommending institutional changes needed for continuing compliance or best practices.
  • Oversight of activities needed to implement the Red Flags Rule.

See the UCPPD Review Process document for details on submitting a request for UCPPD approval.

Membership

Name Office Position
Micki Jernigan, Chair Information Technology Services Chief Privacy Officer
Dennis Schmidt Information Technology Services Interim Chief Information Security Officer
Chris Garriss Internal Audit Information Systems Auditor
Barron Matherly Office of the Executive Vice Chancellor and Provost Assistant Provost for Finance
Rich Arnold Office of Human Resources Senior Director, HR Information Management
David T. Lambeth III Office of University Counsel Assistant University Counsel
Christy Samford Office of University Registrar Deputy Registrar
Chris Williams, ITEC Rep Student Affairs IT Director

Meeting Dates & Deadlines

The UCPPD meets monthly. Requests must be submitted for review at least 10 business days before the meeting in order to be considered for that month’s agenda. See the UCPPD Review Process document for details on submission requirements.

Submission Deadline Meeting Date

2/6/2018

2/20/2018

3/6/2018

3/20/2018
4/3/2018 4/17/2018
5/1/2018 5/15/2018
6/5/2018 6/19/2018
7/3/2018 7/17/2018
8/7/2018 8/21/2018
9/4/2018 9/18/2018
10/2/2018 10/16/2018
11/6/2018 11/20/2018
12/4/2018 12/18/2018

Additional Resources

UNC GA Memo re Red Flag Rules (pdf)

UNC GA Model ID Theft Program (pdf)

NC State Controller Red Flag Rules Advisory Memo

Red Flags Rule (16 C.F.R. Section 681.1)

Appendix A to Part 681—Interagency Guidelines on Identity Theft Detection, Prevention, and Mitigation (Published as an appendix to the Red Flags Rule, provides an outline for developing a program.)

Supplement A to Appendix A (Provides examples of Red Flags – scroll about halfway down page)