1601 PR.07 Identity Data Access Requests

    Revision Date: 
    June 21, 2024

    Contents

    1.       Overview

    2.       Understanding Data Access Request Terminology

    3.       Attribute Release Request Requirements

    4.       Reporting Changes

    This procedure supports Policy 1601 Information Access and Security and governs Yale employee requests for Yale Identity Data, on a one-time or ongoing basis, from the People Hub/Identity Data Repository (“IDR”) for use in a University or third-party application.

    A. The People Hub and Identity Data Repository (“IDR”)

    The People Hub and Identity Data Repository are secure, private, and managed directory services that contain identity information about students, faculty, staff, and University affiliates. The systems are designed to:

    • Make identity and affiliation information of enterprise interest available to a wide variety of systems and platforms;
    • Allow departments to authenticate NetID holders when logging into departmental systems;
      and
    • Permit departments to authorize access to systems or applications based on user attributes stored within People Hub/IDR (e.g. department, affiliation, job category).

    Note:  Identity Data attribute requests are agnostic as to data source (People Hub or IDR). The Identity and Access Management (“IAM”) Tech team determines the optimal data source based on information provided in the request form. 

    The People Hub contains comprehensive and confidential information and is not equivalent to the public “white pages” directory which is sourced from the IDR.  The People Hub and IDR are repositories of information consolidated for the internal use of University departments and systems.  Authorization to access confidential or restricted information contained in these data repositories, is governed by the Identity Attribute Access Control Process (Section 3) and the owners of the systems from which that information is derived.

    Please note that the People Hub/IDR are not the systems of record for any student or employee Identity information but do reflect that information in a timely manner.

    The IDR is the system of record for Yale Identity Correlation Data and provides a view of its authoritative source systems’ data and from time to time as it aggregates and correlates Identity data.  Note: The IDR may not exactly reflect the current, official status of a student or employee, but rather refreshes once a day.  The IDR is a read-only repository, and no updates outside its own aggregation processes are permitted. 

    The IDR drives the University’s identity authentication and provisioning processes.

    • Yale Identity Data: One or more Yale Identity Attributes (e.g., name, affiliation, or job title). 
    • Attribute Release Request: A request identifying the need to programmatically access People Hub/Yale Identity Data. 
    • Source System: An authoritative source of the People Hub/Yale Identity Data. 
    • Data Owner (of People Hub/Yale Identity Data): An individual who has been officially designated as accountable for specific identity data that is transmitted, used, and stored on a system within a department, college, school, or administrative unit of the University. 
    • Requestor: An individual requesting access to Yale Identity Data on behalf of an organizational unit, department, or project.
    • Yale Identity Correlation Data: Process by which Yale identifiers, (e.g. NetID, UPI, PIDM), are recognized as being related and represent one identity.
    • Aggregation Process: The process of collecting identity data from different source systems and presenting it as a unified data source.

    A.  Information Security Office (“ISO”) Approval is Required

    All Attribute Release Requests require the approval of the Chief Information Security Officer, or designee, before any data transfer may occur.

    B.  Data Owner Approval is Required

    All Attribute Release Requests require the approval of the Data Owner of the Source System, or designee, before any data transfer may occur.

    The Data Owner should review the following University policies before approving an Attribute Release request:

    • Policy 1601 Information Access and Security;
    • Policy 1607 Information Technology Appropriate Use Policy (ITAUP);
    • Policy 1610 Systems and Network Security; and
    • Policy 1611 Program for the Security of Customer Financial and Related Data.

    C.  Data Owner Rights and Responsibilities

    Access to Yale Data found on a Source System is entirely at the discretion of the Data Owner of the Source System. The Data Owner is accountable for Attribute Release Requests the Data Owner approves.

    The Data Owner is responsible for promptly contacting IAM in the ISO by contacting the ITS Help Desk when one of the following events occurs:

    • Access to a previously approved Attribute Release Request needs to be terminated;
    • A Source System is to be decommissioned within 90 days;
    • A Source System is to be replaced within 90 days; or
    • A Data Owner for a Source System has changed.

    D.  Requestor Responsibilities

    The Requestor is responsible for providing truthful and accurate information when making an Attribute Release Request.

    The Requestor shall promptly notify IAM in the following circumstances:

    • When the Application/Contact pair changes (when the contact changes or an application is replaced).
    • When access to the Yale Data on a Source System is no longer required (when data needs change or a system is decommissioned).

    Report any changes to a Data Source, or any changes to a System or Application Receiving Data from the Enterprise Directory directly to the ITS Help Desk.

    Related Resources

    1601 Information Access and Security
    1607 Information Technology Appropriate Use Policy
    1610 Systems and Network Security
    1611 Program for the Security of Customer Financial and Related Data