Personally Identifiable Information
Personally identifiable information (PII) is only collected with your approval, which is affirmed via actions, such as submitting online forms or phone calls. By PII, we are referring to information that can be used to identify or contact an individual. For example, you may choose to provide your name, address or telephone number when submitting an information request. PII is used by the university to assist individual visitors as necessary. This assistance may involve redirecting an inquiry or comment to another university individual or department better suited to provide the requested service.
Non-Personally Identifiable Information
Use of Information
Directory information may be disseminated to specific parties pursuant to the Family Educational Rights and Privacy Act (FERPA). CSU does not sell or share user information to outside parties without prior written consent of the user; however, the university may share any user information with its employees, affiliates and partners, or independent contractors with a vested interest. In some cases, cookies provided by third-party services, including Google Analytics, may be used to review website performance and to identify enhancements that may benefit visitors based on current navigation patterns and search trends.
Security of Information
CSU takes security of information seriously and, as such, takes all reasonable precautionary measures to protect sensitive user information. CSU utilizes encryption wherever possible for sensitive information requested for submission via the World Wide Web. The university may contract with third-party vendors to show our advertisements on non-CSU websites and other digital delivery mechanisms.
PII for enrolled students is protected by FERPA administered by the U.S. Department of Education. Please visit our FERPA page for more information. "Directory information" disclosures include verifying enrollment for employment or credit application purposes.
CSU observes the applicable principles of the EU General Data Protection Regulation.