irectory Domain PolicyThe purpose of this policy is to ensure that only properly registered and configured ICT equipment is able to join the Massey University domain, to improve the detection of vulnerable equipment and to enhance the manageability and security of Windows desktops and other devices connected to the University network.
Active Directory Domain Policy (80 KB)
The purpose of this policy is to ensure that when such services that are adopted, that they comply with the information security requirements of the University.
Cloud and Internet Services Policy.pdf (216 KB)
The purpose of this policy is to ensure all credit card payments received on behalf of Massey University adhere to the requirements of the Payment Card Industry Data Security Standards (PCI DSS).
Credit Card Security Policy.pdf (248 KB)
The purpose of this policy is to ensure that data management responsibilities and principles apply to the management, security and use of Massey University’s corporate data assets and forms part of Massey University’s internal control and corporate governance arrangements.
Data Management Policy.pdf (127 KB)
The purpose of this policy is to protect Massey University’s network infrastructure from uncontrolled or unauthorised access that could result in Intellectual Property loss, data destruction or unlawful or unapproved activities.
The purpose of this policy is to ensure all IT equipment used at Massey University is procured in the most cost effective way and that it meets at least minimum business operating standards; and to ensure that software procurement is managed in such a manner that it is cost effective, meets legal requirements and appropriate support models are available.
Desktop Hardware and Software Policy (69 KB)
This policy defines the conditions required to register a domain name.
The purpose of this policy is to regulate protection of Massey University network when accessed by "Endpoint" equipment (e.g. such as desktop computers, laptops, tablets, mobile devices or similar).
Endpoint Security Policy.pdf (232 KB)
The purpose of this policy is to establish and operate effective access control methods across IT Systems, to reflect and mitigate the associated information security risks.
Electronic Information Access Control Policy.pdf (225 KB)
The purpose of this policy is to define protocols and expectations for Massey University staff, students and affiliates regarding appropriate Internet use and digital communications.
The purpose of this policy is to define the appropriate use of University supplied mobile devices by Massey University staff and authorised users.
This policy defines Massey University’s position on the use of peer-to-peer (P2P) applications that allow copyright infringement or the illegal sharing of copyrighted files, to protect the University from litigation resulting from breaches of national and international copyright laws following inappropriate use of ICT systems.
The purpose of this policy is to define the protocols and expectations for Massey University staff, contractors, and affiliates, who work on information and information systems remotely (Teleworkers).
Remote Information Worker Policy.pdf (225 KB)
This policy defines appropriate access to and use of telecommunications systems at Massey University to ensure the business requirements for such systems are balanced with the costs involved.
Telecommunications Policy (142 KB)
The purpose of this policy is to define protocols and standards for the use of all information and communication technologies (ICT) at Massey University, by stipulating acceptable and unacceptable practices required to conserve those resources and to protect the rights of University staff and students.
Use and Access to Information Technology Systems Policy (59 KB)
This Policy is intended to protect Massey University’s network infrastructure and information systems from uncontrolled or unauthorised access which may result in Intellectual Property loss or data destruction.
User Code and Password Policy (203 KB)
Back to top