Contents
Cal Poly Pomona

Guideline: Checklist for Web Pages in the csupomona.edu Domain

Introduction

Web pages in the csupomona.edu domain are impacted by State and Federal laws and university policies and guidelines, not all of which will be apparent to the members of the campus community who create web pages. The purpose of this document is to provide a checklist of these requirements and expectations and links to resources for dealing with them.

The Checklist

All web pages

  1. Web page is accessible to users with disabilities. [1]
  2. Web page contains contact information, or a link to contact information, for the owner of the page. [2]

Organizational web pages

  1. Web page maintains the visual identity of Cal Poly Pomona. [2]
  2. Web page has an indication of the currency of its information. [2]

Web page content

  1. If Level 1 or Level 2 information (as defined by the Cal Poly Pomona Information Classification and Handling Standard) is available on the page, access controls are in place to allow access only to those users permitted to view the information. [3]
  2. If copyrighted material is present on the web page that does not belong to the owner of the page or to the university, it is appropriately licensed or used in accordance with the Fair Use provisions of U.S. copyright law. [4]
  3. If trademarks are used on the page, they are used in conformance with the guidelines for use of trademarks. [5]
  4. The owner of the web page either owns university-related content on the page, or has been permitted by the appropriate information authority (as defined by the Cal Poly Pomona Information Classification and Handling Standard) to present it. [3]

Web pages with browser cookies

  1. If the web page, or any add-in (such as a hit counter) creates a browser cookie, a privacy statement is provided that explains the use of the cookie. [6]

Web pages that require authentication

  1. All access to the page and its components is through Transport Layer Security (also called SSL; all URLs are in the form https: rather than http:). Ideally, addressing the page by http: should automatically redirect to the same page under https: or else provide an informative error message, but this is not possible on all systems. [7]
  2. The web page must have a privacy statement stating how the supplied username and password will be used and, if applicable, stored. [6]

Web pages that gather personal information from users

  1. Web page has a privacy statement, or a link to a privacy statement, explaining how the information will be used. [6]
  2. If Level 1 or Level 2 information (as defined by the Cal Poly Pomona Information Classification and Handling Standard) is gathered from the user, safeguards are in place to assure that the information is not stored unencrypted on the web server, is not sent unencrypted over a network (for example, through email), and that it is not made available to unauthorized individuals. [3]

References and assistance

  1. Governing law, policy, or guideline
    Section 508 of the Rehabilitation Act, Executive Order 926,
    Coded Memorandum AA-2007-04 (pdf)
    Online assistance
    Further assistance
    I&IT Web Development, webteam@csupomona.edu
  2. Governing law, policy, or guideline
    Cal Poly Pomona Web Policy
    Further assistance
    I&IT Web Development, webteam@csupomona.edu
  3. Governing law, policy, or guideline
    Cal Poly Pomona Information Classification and Handling Standard
    Further assistance
    For assistance in interpreting the Standard, please consult your manager, if there are remaining questions, contact the Information Security Officer, aarboleda@csupomona.edu
  4. Governing law, policy, or guideline
    United States Copyright Law
    Online assistance
    Fundamentals of Copyright and Fair Use (Word document, CSU Chancellor's Office)
    Further assistance
    Cal Poly Pomona does not have a central office that provides legal assistance with copyright law.
  5. Governing law, policy, or guideline
    Guideline for use of trademarks on the Cal Poly Pomona Web
    Further assistance
    I&IT Web Development, webteam@csupomona.edu
  6. Governing law, policy, or guideline
    California Government Code Section 11015.5 (relevant section)
    (The California Online Privacy Protection Act of 2003 applies to commercial web sites, and is not the applicable law for the CSU.)
    Online assistance
    [pending—a web page dissecting the law and explaining how to deal with each part]
    Further assistance
    I&IT Web Development, webteam@csupomona.edu
  7. Governing law, policy, or guideline
    [documentation pending]
    Online assistance
    Wikipedia
    Further assistance
    For assistance in implementing TLS (SSL), please contact your Deparment, College, or Division tech. For guidance on the effective use of SSL on existing systems, please contact I&IT Web Development at webteam@csupomona.edu

This document was approved by the It Governance Executive Committee on May 2, 2008.

  Did you find what you were looking for?