1. Overview
The University of West Alabama (UWA) provides information technology (IT) resources to support learning, teaching, research, economic development, and University operations. These resources include UWA accounts and credentials, email, learning platforms, cloud services, websites, computer labs, printers, network access, and remote access services.
Use of UWA IT resources is a privilege, not a right. All users are expected to use these resources responsibly, ethically, and in a manner that protects UWA systems, data, and the campus community.
2. Scope
This policy applies to all faculty, staff, students, alumni, contractors, consultants, vendors, other workers at UWA, and all personnel affiliated with third parties. It also applies to all UWA IT resources and services and to any device, whether UWA-owned or personally owned, that accesses UWA accounts, systems, or networks, including Wi-Fi and VPN, whether on or off campus.
3. Acceptable Use
Acceptable use of UWA IT resources must:
- support the academic, administrative, research, service, or operational mission of UWA;
- be lawful, ethical, and consistent with academic integrity and University policy;
- respect the rights, privacy, and work of others; and
- protect the security and availability of shared systems and data.
Limited personal use is permitted when it does not interfere with University operations, consume excessive resources, create security risks, or otherwise violate law or University Policy.
4. User Responsibilities
All users must:
- Use only accounts, systems, and data they are authorized to access;
- keep passwords and MFA methods secure and never share accounts or credentials;
- protect devices used to access UWA resources by using reasonable security measures;
- promptly report suspected phishing, malware, account compromise, or lost/stolen devices used for UWA access;
- protect sensitive or confidential information, including student education records, in accordance with FERPA and other applicable requirements; and
- use UWA resources in a respectful manner without harassment, threats, intimidation, or impersonation.
Users are responsible for all activity performed under their assigned credentials.
5. Prohibited Use
The following activities are prohibited unless expressly authorized in writing by the Office of Information Technology (OIT) or authorized University leadership:
- attempting to gain unauthorized access to accounts, systems, files, or data;
- sharing account credentials, MFA approvals, VPN credentials, or allowing another person to use your account;
- bypassing, or attempting to bypass, authentication, security controls, or monitoring safeguards;
- scanning, probing, sniffing, spoofing, denial-of-service activity, or other attempts to disrupt University services;
- introducing malware or harmful code;
- accessing, altering, or attempting to obtain restricted academic, administrative, or personal information without authorization;
- using UWA resources for harassment, threats, unlawful discrimination, or impersonation;
- sending spam, phishing messages, chain messages, or unauthorized bulk communications;
- violating copyright, software licenses, or other intellectual property rights;
- misrepresenting identity, affiliation, or University endorsement, including falsely presenting communications, accounts, or activity as official UWA business;
- using UWA resources for unauthorized commercial activity or fraudulent purposes; and
- accessing, creating, storing, transmitting, or distributing content in violation of applicable local, state, or federal law, or in violation of applicable UWA policies.
6. Privacy, Monitoring, and Ownership
UWA IT resources, and data stored, transmitted, or received through them, are University resources. Users should have only a limited expectation of privacy when using UWA IT resources.
Authorized UWA personnel may log, monitor, audit, access, and inspect UWA systems, accounts, network-connected devices, and data associated with UWA resources as necessary to administer and protect University systems, investigate suspected security incidents or policy violations, and meet any legal or operational obligations.
7. Policy Compliance
UWA may suspend or restrict access to accounts, systems, or networks to protect University resources or investigate suspected violations.
Violations of this policy may result in disciplinary action under applicable student or employee processes, contract remedies for external parties, and possible civil or criminal penalties where applicable under the law.