/
SUNY Fredonia Compliance Training Program

SUNY Fredonia Compliance Training Program

Compliance Training with KnowBe4

To help protect our campus community and ensure we meet legal and regulatory obligations from the federal, state, and SUNY, all employees are required to complete annual compliance training through our KnowBe4 platform. This training is crucial for building a strong security culture and protecting sensitive information.

You will receive an email from the KnowBe4 platform with a link to your assigned training modules. You can access the training from any device and do not have to complete it in one sitting.

Training Components

Your annual training will cover the following critical areas:

  • Information Security: This module is required for all employees including campus affiliates and emeritus. It covers the fundamental cybersecurity practices, including phishing awareness, password security, and data handling. It is designed to empower you to recognize and report common cyber threats that can compromise both university data and your personal information.

  • Gramm-Leach-Bliley Act (GLBA): Required for all employees who handle GLBA data, this training focuses on protecting "customer financial information," which at a university includes data related to student loans and financial aid. The module will help you understand your role in safeguarding this sensitive data and adhering to federal regulations.

  • Health Insurance Portability and Accountability Act (HIPAA): This training is required for all employees who handle Protected Health Information (PHI). It covers the rules for protecting patient privacy and the security of health records, which is critical for our health services and clinical programs.

  • Payment Card Industry Data Security Standard (PCI DSS): This module is mandatory for anyone who handles credit card data for the university. It covers the security standards and procedures required to protect cardholder information during transactions, from acceptance to processing.

Why this training is important

Completing this training isn't just a requirement; it's a vital part of our defense against cyber threats. Human error remains a leading cause of data breaches. By learning to identify and respond to threats, you become a key part of our "human firewall," helping to protect the entire SUNY Fredonia community.

How to request Compliance Training for employees (including student employees)?

  1. Open the Form
    Click or copy the link into your browser: Compliance Training Request Form

  2. Enter the information for the employee that needs to be assigned the training.
    name, email address, and department or office location.

  3. Select the Type of Training Needed
    Choose from the available options (e.g., GLBA, PCI DSS).

  4. Submit the Form
    Click the Submit button at the bottom of the form. You should receive a confirmation message or email.