...
Each staff member shall comply with UC’s documented policies and procedures to prevent the unauthorized use, disclosure, loss, acquisition of, or access to, Institutional Data.
Each staff member shall make reasonable efforts to prevent unauthorized access to or alteration or use of Institutional Data, and shall notify the member institution as soon as possible if they become aware of any unauthorized access, alteration or use.
Each staff member agrees (i) to comply with all FERPA requirements governing the use and re-disclosure of Student Records; (ii) to keep Student Records confidential and not disclose Student Records to any third party; (iii) to only use Student Records for the sole purpose of performing their obligations under this Section; and (iv) to implement reasonable security measures to protect Student Records and, at a minimum, utilize industry standard security procedures.
...