Article 45 – Information Security
49020.9.4 Confidentiality of Information on CDCR Information Systems
-
Appropriate procedures shall be developed by the appropriate data custodians to protect and preserve the confidentiality of the Department’s information stored or residing in or on CDCRCalifornia Department of Corrections and Rehabilitation controlled environments, such as the CDCRCalifornia Department of Corrections and Rehabilitation Network, individual stand-alone desktop and laptop workstations, browser-based applications such as Parole-LEADS, and the SOMSStrategic Offender Management. Additionally, no High Risk Confidential Information shall be faxed, reproduced (e.g., photocopied), distributed via unencrypted e-mail, downloaded to a non-confidential system, given to an unauthorized recipient, or transmitted by telephone to any entity without appropriate security controls in place that are documented in the CDCRCalifornia Department of Corrections and Rehabilitation ISAInformation Systems Analyst ISSG.