Backup
Backup and Business Continuity Policy
Policy Number: INFOSEC 1.3
Version Number: 1.0
Classification: Information Security
Effective Date: May 18, 2010
Responsible University Office: Information Technology Services (ITS) Quality Assurance
1.0 INTRODUCTION
Saint Louis University and its member organizations (collectively, "Saint Louis University", the
“University” or "SLU") are committed to conducting business in compliance with all applicable laws, regulations and SLU policies including Health Insurance Portability and Accountability Act
(HIPAA), Payment Card Industry Data Security Standard (PCI-DSS), Gramm-Leach-Bliley Act
(GLBA), and the Family Educational Rights and Privacy Act (FERPA).
2.0 PURPOSE
The purpose of this policy is to ensure that all critical information resources, as defined by this policy, that store, process or transmit confidential information are clearly identified and that business continuity procedures to regularly test the functionality of backup or redundant systems and emergency procedures on all such critical systems, as well as allow for exact copies of data to be retrieved if necessary, are developed. The policy was developed to provide guidance and assistance to all members of the Saint Louis University community in the development, implementation and maintenance of a business continuity plan that covers all infrastructures that contain confidential information in all formats (electronic, paper, video, audio etc.). Saint Louis University has adopted this policy to ensure all confidential information is properly backed up (either fully or incrementally) and all associated systems remain functional, reliable and able to continue operations in the event of an emergency.
3.0 SCOPE
This policy applies to hardware, software, and/or procedural mechanisms implemented by Saint
Louis University to develop, implement and maintain a business continuity plan that covers all information resources