Erica, Here, rules about removing phishing emails from the server would not be a university policy, but a “behind the scenes” practice of our IT department. I don’t think we have any specified rule about this, though, given how many phishing emails we all get.
As for a rule for staff members to remove them from their individual email accounts, this would also not be a university policy, but treated as a “best practice,” managed through informational and advisory websites (such as our “Phishbowl”: http://www.it.cornell.edu/security/phishbowl.cfm). Joshua Joshua Adams, Director University Policy Office and EVP Communications Cornell University 341 Pine Tree Road Ithaca, NY 14850 p: 607.255.8279 f: 607.254.1555 w: www.policy.cornell.edu<http://www.policy.cornell.edu/> ü Please consider the environment before printing this e-mail. From: [email protected] [mailto:[email protected]] On Behalf Of Erica Heffner Sent: Thursday, September 22, 2016 8:28 AM To: ACUPA-L <[email protected]> Subject: [acupa-l] email privacy/phishing mitigation Hello all, Does anyone have an explicitly stated practice or policy of removing phishing emails either from the server or from individual email accounts? We address that that employees have a limited expectation of privacy on University email accounts. But haven’t described a practice of removing malicious emails from individual accounts. Erica Heffner, MEd, CCEP Asst. Director Compliance Services University of Vermont [email protected]<mailto:[email protected]> p. (802)-656-1398 Ethics and Compliance Reporting and Help Line<https://secure.ethicspoint.com/domain/media/en/gui/24544/index.html> or Toll Free (877) 310-0413 **********CONFIDENTIALITY NOTICE*********** This e-mail and any attachments may contain private, confidential, and privileged information for the sole use of the intended recipient. This information is intended for receipt and use by authorized addressees only. If you are not the intended recipient, please notify the sender immediately; any dissemination, distribution or copying is strictly prohibited. Replying to Messages: Replying (using Reply) to an ACUPA-L e-mail will distribute your message to the ENTIRE list of members. To send a message privately, reply directly to the individual who sent the message (their e-mail address appears in the "From" line of their original e-mail). To Unsubscribe: Go to http://www.acupa.org/MembershipForm_Discontinue.html and complete the form. We will remove you from the list within 24 hours, during normal business hours. Questions about the ACUPA e-list? Contact Jamie Parris at [email protected]<mailto:[email protected]?subject=ACUPA%20e-list%20assistance> or 607-255-6837.
