Title: 03.20.002-Password Policy

Policy Number: 03.20.002

Policy Title: Password Policy

Status: Active

Policy:

The institution takes proactive steps to protect financial, administrative, and student information from unauthorized access or threats through the implementation of a stringent password policy on all Zoho system elements. This policy is automatically enforced in Zoho and includes the criteria described below.

Passwords for Student Data Systems must meet the following minimum requirements:

• Must be changed every 90 days
• Must be a minimum of 10 characters in length
• Must include at least one uppercase and one lowercase letter
• Must include at least one special character
• Must include at least one numeric character
• Must not include any of last five previously used passwords