Privacy and Security Policy for the "National Chung Cheng University”

Purpose

University information, including third party information that may be accessed or stored by the University of CCU (“Data”), is a valuable asset to the University and requires appropriate protection. Unauthorized use or disclosure of Data could have adverse consequences for the individuals involved and could subject the University to fines, lawsuits, and government sanctions.

Objectives

• To help the University and its community members comply with legal and contractual requirements to protect Data;
• To help safeguard University information technology resources (“IT Resources”) from accidental or intentional damage and Data from alteration or theft; and
• To designate the appropriate level of security requirements for securing Data and IT Resources.

Scope

This policy applies to everyone (including, but not limited to, all University faculty, researchers, staff, students, visitors, vendors, contractors, volunteers, and employees of an affiliated entity) who accesses Data or University networks or who stores Data through the use of University credentials or under the authority of and pursuant to University contracts (“University Community Members”). This policy also applies to such access and storage by University Community Members whether the Data is accessed, stored or otherwise resides on University owned or controlled devices, personally owned or controlled devices, or devices owned or controlled by a third party under contract with the University.

Personal Data collected

CCU collects a variety of personal and sensitive data to meet one of its lawful bases, as referenced above. Most often the data is used for academic admissions, enrollment, educational programs, job hiring, provision of medical services and participation in research.

We will provide the individual data under following circumstances:

• its legitimate interest
• contract compliance
• pursuant to consent provided by you
• as required by law
• as necessary to protect CCU’s interests;
• With service providers acting on our behalf who have agreed to protect the confidentiality of the data.

Security of Personal Information

This website will never arbitrarily sell, exchange, or rent any users’ personal information to other groups, individuals or private companies. However, in a few special circumstances outlined below, your personal data may be processed in accordance with relevant laws and regulations. These situations include (but are not limited to):

50. When you send an email to the customer service mailbox of this website and your needs are related to other government agencies, we may share your personal information with other government agencies.
50. Your acts on this website are in violation of its privacy and security policies or may harm or hinder the rights of this Website or cause damage to anyone; this Website concludes after study and analysis that disclosure of your personal data in necessary in order to identify, contact or take legal action.
50. Based on the idea of good faith, it is believed that exposing your personal data is required by law.
50. A judicial unit requires the disclosure of certain personal data on this website for public safety; this Website will consider the legality of the judicial unit and compliance with statutory procedures, then this Website may adopt the necessary cooperation measures after considering the security of all users.

Your Rights:

• To request deletion or erasure of your Personal Data
• To object to the sharing of your Personal Data
• To object to the profiling of your Personal Data

Questions about Our Online Privacy Policy

   If there are any questions or concerns about the University's online privacy policy, please contact the secretariat office in person, or through regular mail at: pims@ccu.edu.tw

 

Reference

50. Personal Data Protection Law
50. Personal Data Protection Law Enforcement Rules