IT Services

...

• Lock your room when you leave. Do not leave strangers alone in your room or other places.
• If you are working in customer service, no one should be able to see your screen.
• Make sure that all doors and windows are locked when you leave the room last. Rooms with electronic devices should always be locked.
• Find out how to behave and react in case of fire or accident in your working environment.
• Lock your workstation to prevent unauthorized access. Lock it by pressing the WINDOWS+L buttons. Switch off your computer when you leave for the day. If it is a shared computer, always log off.
• Keep all of your important electronic storage media and papers safely locked.
• Pick up your printouts from shared printers and copiers as soon as possible.
• Please also ensure that printouts containing personal information are properly disposed to security trash bins.
• Students do not carry any visible IDs, so it is everyone’s duty to check for unauthorized access of school’s premises. Information about trainees should be notified to everyone.
• Employees have full responsibility of their visitors. They are received and escorted out by the personnel.
• If a user claims to have forgotten the password or the username is not accepted, teachers or other personnel should not allow access to a workstation they are logged in.

...

• Laptops are meant for work use only by the school’s personnel. Only authorized personnel are allowed to use them.
• It is not allowed to connect laptops that are not managed by the school’s IT services to the wired network. Use always WLAN where it is available.
• It is not allowed to alter or modify a computer’s hardware/software configuration or settings. It is forbidden to modify any kind of security settings.
• Never leave your laptop unattended or visible in a car or exposed place, even if it is for a short period of time.
• Laptops should be connected to our school’s network regularly or every fortnight to receive the necessary antivirus and security updates.
• When wireless services (WLAN and Bluetooth) are not needed or in use, switch them off. Same rule applies to mobile phones that these features are available. In Nokia phones, one can switch Bluetooth off by pressing * for 2-3 seconds.

5. Internet

• The internet connection is to be used for work and/or study related purposes, as agreed with the employer.
• The internet connection is secured by a firewall. Data traffic and server logs are monitored to ensure that no violation occurs according to the law of Protection of Privacy, systems and their security settings are secure, services are not misused and for technical development and troubleshooting.
• Do not download from the internet non-work related programs or materials.
• If you suspect that a system is hacked or any kind of security breach change your Metropolia password immediately and contact the HelpDesk telephone service Tel. 09 7424 5000. The password can be changed online with a strong identification at; https://salasana.metropolia.fi
• It is forbidden to use without permission the employer’s credit card for online purchases.
• Keep in mind that you are a representative of your employer, whenever you access the internet. Your computer’s IP address that is transmitted onto the internet is registered to Metropolia.
• Clean up your browser’s cookies frequently.
• Use of the following applications is not permitted due to security risks:
  • Downloaded screensavers that consume a workstation’s resources, such as SETI@home (Search for Extra Terrestrial Intelligence) or similar @home applications.
  • Programs that bypass security protocols and services, such as decryption breaking software.

...

• General Policy on the Use of Information Systems
• Email regulation (Not translated yet) https://tietohallinto.metropolia.fi/pages/viewpage.action?pageId=8552469
• Ministry of Finance and VAHTI instructions.
• Other Information Security organizations including the Finnish Communications Regulatory Authority (Viestintävirasto), The Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto) and The National Archives Service of Finland (Arkistolaitos).
• IT service, your supervisor, your colleagues

10. Governing Laws

• Act on Information Management in Public Administration (906/2019)
  • Public administration shall ensure the consistency and quality management of the data and the information security in order to comply with the principle of publicity.
• Act on the Provision of Digital Services (306/2019)
  
  • The authority shall design and maintain its digital services in such a way as to ensure their security, data protection, discover ability and ease of use.
  • The authority shall provide everyone with the opportunity to submit electronic messages and documents using digital services or other electronic data transmission methods.
• Data Protection Act (1050/2018)
  • Personal data processing
  • Registration (Winha, payroll office, )

...