Web Content Regulation
|Title||Web Content Regulation|
|Sub-category||Security and Compliance|
ITCS Policy Number 1.700 Effective July 17, 2000 (Information Resources Coordinating Council IRCC Approved); Revised February 22, 2006; Amended December 14, 2009 (Executive Council Approved); Reviewed November 7, 2011; Interim approved September 16, 2014. Revised January 31, 2017.
Information Technology and Computing Services Chief Information Officer (252) 328-9000
1. Purpose of Regulation.
1.1. The East Carolina University Web Content Regulation provides guidance and minimum content-neutral standards for faculty, staff, and student web developers contributing to the university's web presence by maintaining web pages on university servers or providing web content to students for instructional purposes. University web space is provided to support the academic and administrative functions of the university. University-related websites are an important means of conducting university business, including but not limited to advancement, communication, education, research, and scholarship. Specifically, this regulation is designed to:
1.1.1. Promote the use of websites in a manner consistent with the mission of the university;
1.1.2. Address security issues associated with university information and equipment, and enable appropriate online transactions of university business;
1.1.3. Mandate that the development of websites comply with university policies, and applicable state and federal laws; and
1.1.4. Provide necessary management and oversight of the university’s resources.
1.2. Web Pages Subject to This Regulation.
1.2.1. All websites on university servers are subject to this regulation. Web pages on university servers are either Official University Web Pages or Unofficial Web Pages.
1.2.2. Official University Web Pages include the East Carolina University home page; academic department and program pages; office, administrative, and support unit pages; news and information pages; and any other internet address that is otherwise sponsored, endorsed or created pursuant to the authority of a university division, department or administrative unit; including course pages residing outside the secure course management system.
1.2.3. Unofficial Web Pages are maintained by individual university computer account holders on university servers, such as personal faculty and staff web pages; individual student web pages and university-recognized student organization web pages.
2. Minimum Requirements for Both Official University Web Pages and Unofficial Web Pages.
2.1.1. ECU requires web authors of both Official University Web Pages and Unofficial faculty and staff web pages at the East Carolina University home page to comply with accessibility requirements mandated by federal and state law. Accordingly, the university has adopted Web Accessibility Standards based on Section 508 of the Workforce Investment Act of 1998 and W3C Web Content Accessibility Guidelines. By adhering to these requirements, ECU's goal is to make web resources accessible to all, including persons with disabilities. Those requesting reasonable accommodations should contact ECU Disability Support Services. All accommodations required by law will be provided. Examples include providing alternative formats or auxiliary aids and/or making other adjustments.
2.2. Affiliation and Disclaimer.
2.2.2. Unofficial Web Pages: The appearance or design of an Unofficial Web Page should not cause a reasonable person to believe that it is an Official University Web Page, or is otherwise sponsored or endorsed or created on authority of a university division, department or administrative unit. To reduce the likelihood of confusion, every Unofficial Web Page maintained on a university server must contain the following disclaimer:
188.8.131.52. This web page is not a publication of East Carolina University, nor is it in any way sponsored or endorsed or created under authority of a university division, department or administrative unit. The author(s) of this page are solely responsible for its content.
2.3.1. With the exception of ECU Athletics, advertising by external, unaffiliated organizations is not permitted on any university webpage. Advertising is defined as banner ads or other promotional messages being displayed on webpages in exchange for direct compensation (monetary or otherwise) for their delivery.
2.3.2. This regulation does not prohibit the appropriate recognition of sponsors or donors on the webpages of programs supported by their contributions.
2.4. Web Applications and Databases.
2.4.1. ITCS must be notified of all intentions to put interactive applications on ECU operated servers. Such applications must be reasonably constrained due to concerns about security, server performance, operational monitoring, and ongoing maintenance. Collecting data received through web applications using applications, such as ColdFusion scripting requires a data source be established on the server. ITCS has the right to deny requests for data sources or to disable existing data sources if security or performance concerns are brought to our attention. Applications that require extensive scripting or involve monetary transactions must be approved by ITCS. Data that is sensitive, private, or requires increased protection is generally not allowed on all public web servers. There are special cases, where information may be collected; however, in all such cases the security requires the approval of ITCS and the data owner. Sensitive information should not be displayed or collected by any website residing outside a secure connection.
2.5. Minimum Requirements for Official University Web Pages Only.
2.5.1. General Appearance. All Official University Web Pages must follow the ECU Web Standards and Responsibilities.
2.5.2. University Content Management System Regulation. Effective July 1, 2011, official websites hosted in the ecu.edu domain are to be created and maintained using the content management tools approved by the University Web Oversight Committee.
184.108.40.206. Each department, office and academic center must designate one person to be the site’s primary web contact (PWC). The PWC is responsible for ensuring his or her department, office, or academic web page adheres to the university web regulation. The PWC may delegate steps needed to be in accordance with the regulation, such as content creation, but should be prepared to serve as the primary informational contact for inquiries regarding the web page. Each area must designate a PWC to obtain space on ECU web servers. In the absence of a PWC, the chair or director will be listed by default.
220.127.116.11. Official web pages must be kept up to date. Out-of-date information should be removed and new information added on a regular basis. To verify when a webpage was last updated, all webpages will automatically display a "date last modified: mm/dd/yyyy" in the footer of the page. Only active files should be kept on the Internet servers. Inactive webpages and files should be removed from official directories and stored either locally or on another campus network.
3.1. Oversight of web pages subject to this regulation is the responsibility of the University Web Oversight Committee. Violations of the web regulation will be made known to the PWC for resolution. Noncompliance with applicable policies and/or laws may result in removal of web pages or directories from the main web server and/or removal of links to the webpage from the upper level university web pages and site index. Oversight of web pages will be consistent with the First Amendment.
3.2. A sample of web pages will be reviewed quarterly by Disability Support Services, ITCS, and Creative Services to ensure they meet ADA, security, and design requirements. The PWC will be notified if web pages are out of compliance and be given a reasonable timeline to take corrective action. If corrective action is not taken, then the webpage will be removed from ECU servers, and, as appropriate the Dean, Director, Department Chair, or Vice Chancellor will be notified.
3.3. Responsibility at Termination. An author of an unofficial web page is solely responsible for moving that page to a new non-university server once the employment and/or academic relationship with East Carolina University has ended, such as when an individual leaves university employment, a student graduates or is otherwise no longer enrolled at ECU, or where a student organization ceases to exist. ECU reserves the right to remove unofficial websites authored by an individual and/or group who/that no longer maintains an employment and/or academic relationship with ECU without notice as part of its routine maintenance of university servers.