Policies

Policies¶

IT charter¶

IT charter is annexed to the internal regulations of the École Polytechnique and applies to the entire information system and communication of the X and laboratories.

The General Data Protection Regulation applies to all:

Ecole polytechnique: https://portail.polytechnique.edu/dsi/securite-rgpd/protection-des-donnees-personnelles
CNRS: https://www.cnrs.fr/fr/cnrsinfo/mise-en-place-du-rgpd-au-cnrs

Workstation encryption¶

Warning

The consequences in the event of theft or loss of a computer, if it is not encrypted, are very concrete and can prove to be extremely damaging, concerning personal data (...), concerning data relating to scientific and technological heritage (...), in the case of projects in collaboration with third parties (...) (Extract from the note Computer encryption (CNRS DGDR, 2018)

This is why the CNRS imposes workstation encryption regardless of their operating system.

Important

All business computers in the unit, regardless of funding source, are subject to the full disk encryption requirement. (Extract from the updated Encryption note (CNRS RSS-C, 2018):)