Securely enable world-class teaching, learning and research

The information security framework provides a baseline developed by the community, for the community in consultation with subject matter experts to:

  1. Enable the mission of the University.
  2. Increase trust and reduce risk.
  3. Address regulatory and legal requirements the University must meet.

Learn more about the components that frame information security practices and support informed decision making at U of T below.

Icon showing information security: two hands cradling a green shield with a white checkmark.

Information security policies

Policies set the foundation for information security governance and define how the institution addresses security and risk. They provide an overarching direction for all University community members regarding protection of information and digital assets.

Policy on Information Security and the Protection of Digital Assets

The policy to protect the privacy, confidentiality, authenticity, integrity and availability of digital assets, including information systems that store, process or transmit data.

Policy on Information Technology

This policy determines appropriate use of the University’s information technology services including hardware, software, networks and more.

Appropriate use of information and communication technology

This resource provides a framework for the protection and effective use of the University’s information and communication technology resources.

FIPP Office policies and procedures

Policies that protect the privacy of those who work and study at the University.