Policies and Guidelines
IT Services and Facilities
- Acceptable Use Policy
- Access to User Accounts Policy
- Use Policy for Long-Serving Retirees / Leavers Account
- Guidelines for Recording Online Meeting
- Best Practices for protecting your ZOOM meetings
- Policy on Mass Event Announcement & Promotion Email
- General Usage Guidelines for using Mailing Lists
- Guidelines for Using ALLSTAFF, ALLUG-LIST and ALLPG-LIST Mailing Lists
- Colocation Data Center Policy
- Computer Barn Regulations
- Personal Homepage (iHome) Service Guidelines
- ResNet Usage Policy
- Virtual Servers Usage Policy
- Work From Anywhere Guidelines (for Staff)
Cybersecurity
- Cybersecurity Policy (Executive Summary)
- Cybersecurity Policy
- Risk Assessment, Classification and Mitigation
- Risk Classification
- HKUST Data Classification Guidelines
- Acceptable Practices for Handling High Risk Data
- Minimum Security Standard
- Cybersecurity Incident Handling Policy
- Escalation Procedure for Extensive / Widespread Cybersecurity Incident
- Adoption of New Technologies Policy
Data Governance
Intellectual Property & Privacy
Systems and Applications (for Developers)
- IT Infrastrure Security Policy
- HKUST Mobile App Policy
- Mobile App Security Guideline for Developers
- HKUST Web Hosting Service Guidelines
- Acceptable Practices for Hardening Server OS
- Acceptable Practices for Server Patch Management
- Acceptable Practices for Privilege Account Management
- Guidelines on choosing Cloud Service Provider
- Third Party Supplier Management Policy
- Application Development Guidelines
- TLS Cipher Hardening Guideline
Related Laws