IT Policy Resource Page
Policies and planning guidelines issued by
DOIT in accordance with Conn. Gen. Stat §4d-2(c).
State Property Control
(Version 1, issued January 3, 1999)
Requires agencies to follow inventory control procedures for technology assets, including equipment and computer software, as established in the Property Control Manual.
Defines uses, limits and procedures for telecommunications equipment and services.
Use of Relational Data Base Systems (Version 2.0, Issued February 15, 2001)
Requires the use of industry-standard structured query language (SQL) for mission-critical database systems, and in database table definition and manipulation.
Implementation/Deployment of State Agency Internet Sites and Extranet Sites (Version 2.0, Issued February 15, 2001) Defines hosting, accessibility and security requirements for state agency websites.
Data Classification Policy (Version 1.0, Issued March 1, 2010) Requires consistency in classification of State data in accordance with state and relevant federal standards
Security for Mobile Computing and Storage Devices (Version 1.0, Issued September 10, 2007) Establishes additional security requirements for mobile computing devices and mobile storage devices.
Network Security and Procedures
HIPAA Security Policy (Version 2.0, November 30, 2004)
Policies and centralized procedures to be followed by state agencies that are covered entities for the purpose of compliance with the Health Insurance Portability and Accountability Act of 1996.