I'm working on a presentation that will include information about things you can do in your Sierra, Millennium, or Encore system to protect the privacy of confidential information. The list I've come up with is below, but I'm sure I've missed some things. Do you have any ideas for things I should add, or any feedback for the items below that have question marks? Also, do you have any ideas of things you would like III to change or add in the software to improve patron privacy?
• Limit Data Retention Period
o Delete old patron records, long-billed items, and ILL records (anything else?).
o If you use the "last patron" feature, remove "last patron" data from item records a given number of days after checkin.
o Limit the file size for "fines paid" to limit the length of time that information is kept.
• Public catalog
o Use HTTPS for all of it, not just for logging in (if possible).
o If you use PINs, allow patrons to change their PIN.
o Reading history: If you use it, set it so that patrons have to opt-in. Be aware that it's visible to staff with Sierra SQL access.
o Removing personally identifying information from Google Analytics logs.
o Webpac logs?
o Encore logs (if any?)
o Because email is sent in plain text over the internet, use print templates to remove (or at least minimize) the confidential information in email notices.
o Don't use the cc feature of email notices, or securely delete the copies as soon as you don't need them.
o Clear the logs of phone notices (Teleforms, others) regularly if you have them.
• Staff user accounts
o Avoid generic logins as much as possible.
o Password policies (specific policies you can set in Sierra)
o User permissions (don't give people more access than they need)
o Use HTTPS instead of HTTP for Patron API (the old Patron API).
o SIP2 logs (if any?)
Thanks for any help you can give me on this.
Technology Services Coordinator
Cuyahoga Falls Library