The goal of Information Systems Activity Review is to prevent, detect, contain, and correct security violations and threats to Protected Data such as unauthorized access to the information systems, suspicious data use, or tampering.

Designated workforce members in each college, school or department will review any unauthorized access to the information systems, suspicious data use or tampering. They will take appropriate action regarding potential system vulnerabilities, improve safeguards as needed, and work with the Pacific University Privacy Officer and/or the Information Security Officer on appropriate action items.

PUNID required to review policy.

Implementation Guidance Worksheet:
AA Legal Policies FRM-UIS4509-1 Healthcare System Activity Review and Audit Template 04-19

Appropriate management of access to Protected Data is an important aspect of Pacific University's information security strategy. The policy outlines requirements and process for granting members of the workforce appropriate levels of access to electronic Protected Date based on study or work-related duties and responsibilities. Policy also outlines the documented process for granting authorization and access to Protected Data.

PUNID required to review policy.

Workforce members of Pacific University are generally not issued smart phones or similar mobile devices, which have the ability to connect to the Pacific network and download data. To support mobile access for the workforce, Pacific has adopted a "bring your own device" (BYOD) approach, which permits workforce members to utilize personally owned devices to access Pacific email, calendar, contacts and other resources. This policy applies to both personally owned devices and Pacific-owned devices.

The use of personally owned mobile devices to access Pacific data remotely might inevitably lead to users storing Pacific data on their personally owned devices. While Pacific determines the financial and technical feasibility of implementing technical controls and mobile device security enhancements, the university has adopted the measures described in this policy to safeguard university Protected Data.

PUNID required to review policy.

Revised 2/8/2022

Pacific University has adopted this Risk Analysis and Management Policy in order to recognize the requirement to comply with Information Security Requirements. Under the guidance of Senior Leadership, Pacific University will conduct periodic assessments of potential risks and vulnerabilities to the confidentiality, integrity, and availability of electronic Protected Data of which we have been entrusted.

Senior Leadership will be responsible for receiving, reviewing and acting upon the risk analysis, including assessing assignment of risk, prioritizing risk mitigation, and advocating for resources needed to implement a risk mitigation plan.

Updated 2/25/20
PUNID required to review policy.

Pacific University takes reasonable and appropriate steps to conduct periodic technical and non-technical evaluations of its security safeguards in order to demonstrate and document the extent of the university’s compliance with its security policies and applicable laws and regulations. These safeguards include policies, controls, and processes, which are updated in response to environmental or operational changes affecting the security of Protected Data. The evaluations will be completed by a team or individual designated by Pacific University's Information Security Officer.

PUNID required to review this policy.

Pacific University has adopted this Workforce Security Policy to ensure the confidentiality, integrity, and availability of all Protected Data we create, receive, maintain, or transmit as required by federal or state regulatory requirements, including but not limited to FERPA, GLBA, HIPAA, PCI, and other regional or local applicable laws and regulations. During the course of normal operations, it will be necessary to provide Pacific University workforce members with access to electronic Protected Data. Access to sensitive materials such as this should be restricted to those individuals who have been vetted and authorized for such access and possess a need to know to perform the course of their duties. Workforce clearance procedures screen access to Protected Data and ensure that only those individuals who should possess access have access.

PUNID required to review policy.

Policy safeguards Protected Data, which may reside on, or be accessed through Pacific University workstations. Members of the Pacific University workforce are expected to adhere to this policy whenever they are using workstations to access Protected Data.

PUNID required to review policy.

This policy establishes the required guidelines for the use of HIPAA/FERPA protected healthcare conferencing and video services (e.g. Healthcare Zoom) by workforce members to discuss Protected Data.  Permitted uses are: case conferences, preceptor consultations, HIPAA/FERPA protected conferencing and video services, student performance measures, care coordination, student advising sessions, and administrative meetings.

PUNID required to review policy.

Updated October 2024.

This policy is designed to recognize that many students use first names other than their legal names to identify themselves. This policy makes official University use of preferred names for students in certain instances, while maintaining the official, legal name when required. Congruent with Pacific University’s commitment to creating a welcoming and inclusive campus environment, this policy aims to support the transgender and gender-neutral student populations, as well as students who prefer to be known by nicknames.

PUN ID required to view policy.

Updated July 2024

The purpose of this policy is to provide guidelines for use of printing credits for the Pharos stations located on Pacific University’s Forest Grove, Hillsboro, Eugene, and Woodburn campuses. This policy applies to all Pacific University students and employees.

University Information Services (UIS) deploys and maintains printing and copy stations to numerous locations at Pacific University campus locations where there are high concentrations of students. This system is primarily for student use. Employees should utilize printing resources provided by their departments or use the Service Center for larger quantities of copies but may use the Pharos printing system for small quantities when away from their departmental resources.  All employee Pharos printing charges will be billed to the employee’s department. Currently enrolled Pacific University students receive an annual printing credit, currently set at $60.00, for use of the Pharos printing system. The credit does not apply to sponsored student accounts or students who are not currently enrolled in classes.

PUN ID required to review policy.

Pacific University Healthcare Clinic workforce members are committed to quality, honesty and integrity in our handling of billing and coding activities within the healthcare clinics.  We are committed to operate within the laws, rules, regulations, and policies set by the federal and state governments, insurance programs and Medicare/Medicaid carriers, fiscal intermediaries, and others.

All clinical billing and coding will be done in compliance with all applicable state and federal laws and regulations.  Pacific University follows the standards set forth by the Office of Inspector General (OIG) to identify areas of billing and coding at risk for non-compliance.  Pacific University workforce members will ensure their billing and coding is compliant with these standards.

Policy last updated in April 2024.
PUNID required to view policy.

Pacific University Healthcare Clinic workforce members are committed to quality, honesty and integrity in our handling of billing and coding activities within the healthcare clinics.  We are committed to operate within the laws, rules, regulations, and policies set by the federal and state governments, insurance programs and Medicare/Medicaid carriers, fiscal intermediaries, and others.

The University requires full compliance with all relevant health care billing and coding regulations. All billing and coding workforce members are required to have a strong knowledge of, and to stay current with, applicable laws and regulations as well as University policies and procedures relevant to their areas of responsibility.

Policy last updated in April 2024.
PUNID Required to view policy.

Pacific University Healthcare Clinic workforce members are committed to quality, honesty and integrity in our handling of billing and coding activities within the healthcare clinics.  We are committed to operate within the laws, rules, regulations, and policies  set  by  the  federal  and  state  governments,  insurance  programs  and Medicare/Medicaid carriers, fiscal intermediaries, and others.

Each clinic will be responsible to inform patients and workforce members of their rights with regard to the billing and coding grievance policy. A grievance must be received in written form. If a billing or coding grievance comes to the clinic and can’t be resolved at the clinic level, the clinic must notify the Compliance Officer within 3 business days, documenting the date the grievance was received, the written grievance, a brief statement of the facts alleged, and any documentation that applies to the disputed item(s). Pacific University Healthcare Clinics will commit to maintain a direct channel of communication and mediation between compliance officer, individual patients, patient’s representative, or advocate to resolve any concerns in a positive and timely manner.

Policy last updated in April 2024.
PUNID required for viewing policy.

Pacific University Healthcare Clinic workforce members are committed to quality, honesty and integrity in our handling of billing and coding activities within the healthcare clinics.  We are committed to operate within the laws, rules, regulations, and policies set by the federal and state governments, insurance programs and Medicare/Medicaid carriers, fiscal intermediaries, and others.

There will be both internal and external (i.e. by a contracted independent consultant, or other professional and/or government or regulatory agencies) auditing of proper coding, chart documentation, billing, and data integrity.

Policy last updated in April 2024.
PUNID required for viewing policy.

We are committed to free and open inquiry in matters concerning the advancement of knowledge. In order to carry out our mission, we encourage all community members to speak, write, listen, challenge, and learn through a full, open, and civil discussion of ideas. Freedom of expression is vital to our shared pursuit of knowledge.

This document covers academic freedom; civility within the university and classroom; equity, diversity and inclusion; the student code of conduct; the students' academic rights and responsibilities; employee code of conduct; equal opportunity; and, the Pacific University core values.  

This document was endorsed by the Pacific University President's Cabinet December 1, 2018. 

To provide ethical guidance to healthcare clinic workforce members as it relates to relationships with individuals and entities that supply goods and services to our clinics. To set forth the required standards of conduct for all employees regarding the acceptance of gifts, educational or travel subsidies, entertainment, meals, and any other form of remuneration from suppliers and business partners that refer or are in a position to refer health care business or those that provide products or services used in the delivery of health care.

The scope of this policy is all workforce members of Pacific University’s health care component. Pacific University is a hybrid entity. The health care component (i.e., the covered functions) of Pacific University must comply with this policy. All references in this policy to “Pacific University” shall be construed to refer only to the health care component of Pacific University. In addition to this policy, Pacific University also requires that designated employees, researchers, and governing board members comply with various Conflict of Interest policies concerning disclosures of financial interests and relationships with vendors, research sponsors, and business partners.

PUNet ID required to view policy.
Updated August 2023.

Pacific University accepts, for transfer, coursework and credits comparable in nature, content, academic quality, and academic level to the coursework expected of the relevant Pacific degree program, according to evaluation criteria and transfer limits determined by each College, School, and/or Program. This comprehensive university undergraduate transfer policy will apply to all programs while supporting appropriate programmatic implementation differences.

PUNet ID required to view policy.

Pacific University developed this Identity Theft Prevention Policy pursuant to the Federal Trade Commission’s Red Flags Rule, which implements Section 114 of the Fair and Accurate Credit Transaction (FACT) Act of 2003. The purpose is to establish an Identity Theft Prevention Policy designed to detect, prevent and mitigate identity theft in connection with the opening of a covered account or an existing covered account and to provide for continued administration of the policy.

This protection policy applies to students, employees, board members, contractors, consultants, temporary workers, and other workers at the University, service providers, including all personnel affiliated with third parties.

Pacific University shall include policies and procedures to:

1. Identify relevant red flags to ensure the detection of possible risk of identity theft to customers and incorporate those red flags into the policy;
2. Detect red flags that have been incorporated into the policy;
3. Respond appropriately to any red flags that are detected to prevent and mitigate identity theft; and
4. Ensure the policy is updated periodically to reflect changes in risks to customers and to the safety and soundness of the creditor from identity theft

Administration of the policy is with the Vice President of Finance and Administration in development, implementation and oversight. This includes ongoing staff training and oversight of service provider arrangements to ensure compliance.

PUNID required to see full policy document.