Educause Security Discussion
mailing list archives
Re: email address as directory information
From: "Shalla, Kevin" <kshalla () UIC EDU>
Date: Tue, 21 May 2013 16:55:46 +0000
We have defined e-mail as part of directory information. Not doing so would have seriously hampered students'
communicating with each other. We do get FOIA requests, but we do charge for that, and they're not overwhelming.
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of John
Sent: Friday, May 17, 2013 11:17 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] email address as directory information
We are deliberating over whether we should or shouldn't include student email addresses in our list of directory
information elements as allowed by FERPA. If you institution has chosen not to include email addresses as part of
directory information, how do you control unauthorized access in a way that doesn't stymy collaboration among students
and among students and industry representatives If your institution has chosen email addresses to be part of
directory information, have you faced a barrage of Freedom of Access requests under your state laws (if applicable)?
Chief Information Security Officer
University of Maine System