Third Party Data Transfer Procedure

Version 2.0

For Students, Faculty, Staff, Guests, Alumni

Purpose

This procedure standardizes how data is transmitted/transferred between the University’s IT Resources and a third party. 

Scope

This IT document, and all policies referenced herein, shall apply to all members of the University community, including faculty, students, administrative officials, staff, authorized guests, delegates, and independent contractors (the “User(s)” or “you”) who use, access, or otherwise employ, locally or remotely, the University’s IT Resources, whether individually controlled, shared, stand-alone, or networked.

Procedure Statement

  • Transmission of data to or from the University and a third party must be reviewed and approved by Information Security and Assurance, per the Third-Party Data Transfer Policy.
  • The requestor must submit a service request through ServiceNow from the Applications section of My Apps on fordham.edu to initiate a third-party data transfer request.

ServiceNow instructions:

  1. Click Fordham IT Workspace from the navigation menu.
  2. Select "New Service Request."
  3. Select "IT Internal" from the Service Catalog.
  4. Select "Third Party Data Transfer."
  5. Complete all the required fields on the request form.
    • You may use the Additional Information text box to provide the processors' details not included in the form (e.g., additional contacts, specific instructions, notes).
  6. Click "Order Now."
  7. ServiceNow notifies all related parties of the request via email.
  8. Information Security and Assurance will be able to review the submission and either approve or reject the request.
  9. If the request is rejected, you will need to modify your request and submit a new ticket.

Definitions

IT Resources include computing, networking, communications, application, telecommunications systems, infrastructure, hardware, software, data, databases, personnel, procedures, physical facilities, cloud-based vendors, Software as a Service (SaaS) vendors, and any related materials and services. 

Related Policies and Procedures

Implementation Information

Review Frequency Biennial
Responsible Person Senior Director, IT Security Operations and Assurance 
Approved By CISO
Approval Date 03/11/2019

Revision History

Version Date Description
1.0 03/11/2019 Initial document
1.0.1 03/18/2020 Updated to statement
1.2 02/22/2021 Updated procedure statement
2.0 03/13/2023 Updated procedure steps from EasyVista to ServiceNow

Need Help?


Walk-In Centers

McShane Center 266 | RH
Leon Lowenstein SL18 | LC

View Our Walk-In Hours