Records of access management and monitoring for University buildings, facilities, and stationary equipment.
Content & Scope
Access control and monitoring for University buildings, facilities, and selected stationary equipment are supported by access control, intrusion detection, video surveillance (CCTV) camera, stationary equipment security protection systems, and other systems. Information Systems & Technology (IST) is responsible for installation and management of the required IT systems and infrastructure. The Plant Operations Key Control office is responsible for the management, distribution, and safeguarding of physical keys for doors/entrances, and selected desks and cabinets.
This class excludes records of parking services, responses and investigations by Special Constable Services or other units of recorded incidents (e.g. intrusion detection alarms), and identity and access management for University computer networks and information systems.
The records include: requests for physical keys, electronic key fobs/cards, and access codes, and the associated authorization and distribution records; entry and access events recorded by access control and monitoring systems; intrusion detection system and stationary equipment security protection system arming/disarming events and alarms; video recordings of University locations captured by video surveillance systems.
- For parking services records, see CS70 – Parking Services.
- For records of Special Constable Services’ security incident responses/investigations, see HS80 – Special Constable Services & Law Enforcement.
- For computer network and information system identity and access management records, see IM30 – Information Security.
- Information Systems & Technology.
- Plant Operations.
- Units authorizing assignment of physical keys, key fobs/cards, or access codes.
Vice-President, Administration and Finance.
- Public: guidelines and other instructional information approved for public release.
- Restricted: video recordings, event/alarm and other access monitoring records which may contain the personal information of University community members or visitors.
- Confidential: all other records.
- Guidelines and other instructional information: until superseded or obsolete.
- Requests for keys, key fobs/cards, and access codes, and the associated authorization and distribution records: 2 months after last administrative use (e.g., the key, fob or card is returned; the access code is deactivated).
- Records of entry/access events, system arming/disarming events, alarms, and video recordings of University locations: minimum of 14 days and a maximum of 2 months.
- Records required for the response to or investigation of events/incidents are retained as response/investigation case records in other records classes: for example, HS80 – Special Constable Services & Law Enforcement, for responses and investigations by Special Constable Services.
- Anonymized data derived from these records may be retained by the University until superseded or obsolete.
Responsible Units should document the disposal/destruction of official records using the University records destruction form or equivalent documentation, to verify that we are following our records retention rules.
University of Waterloo Act, 1972.
Retention is based on operational use.
4 September 2020.
19 December 2011
(This records retention schedule replaces HS85 – Surveillance Video-recordings)