Reporting breaches

How to Comply

Report possible breach, loss or theft of confidential information

The University CISO (see http://security.harvard.edu/people) and the OGC must be informed of any known or suspected breach of a server containing confidential information. In addition, the University maintains a whistleblowing policy. The policy is intended to encourage all members of the Harvard community to report suspected violations of law or Harvard policy. The policy provides a mechanism for reporting and investigating suspected violations, including a Compliance Hotline which is available to University affiliated persons wishing to remain anonymous when reporting concerns...

Read more about Report possible breach, loss or theft of confidential information