Introduction
The principles or methods to identify or examine the implementation of a specific policy is termed as policy evaluation. It’s an activity through which one develops an understanding of worth, utility, and merits of a policy. It plays a crucial role in the policy process. In order to get better knowledge about the organization that it is working according to the plan or not, one should view the implemented strategies in the organization. Evaluation comes in after the policy is being implemented in an organization or institution. It provides one with the information on whether to change or not the implemented policy in the organization. Policy evaluation mainly focuses on evaluating the results coming from the implemented policies, is it going in the right direction, is it producing the results that we desired, how much resources have been deployed in this policy implementation. There are two dimensions of the policy evaluations, one is evaluating the results coming from the policy and another one is related to the goals on which policy has been implemented. In the modern world, evaluation can be seen as a technique that is used for altering the culture and behavior rather than system and organizational mechanisms. The core of an evaluation is focused on people than on policies or systems. It is important to evaluate the policies implemented in an organization time to time.
Rowan University Policies
Out of many policies of Rowan University, some of them are related to Information protection, Proprietary information, and Personal identifiable information. By looking at the applicability of the policies, all policies are applied to the faculty members, students, janitors and all those bodies that are closely linked with the university. The main purpose of this policy is to secure the Rowan University network and information. All those who have access to the computers of the university must maintain the information to themselves. Sensitive information should not be disclosed is one of the major content in the information security policy. University made sure that students, alumni, faculty members will keep up the mission of the university by adhering to the rules and regulations of the policy. In case of breach of the policy rules and regulations, whoever does so, serious actions would be taken against him. Reporting of a misconduct entirely depends on who’s reporting, if something according to you is suspicious in the campus one should report for it, the decision will be based on the basis of facts and figures (“Information Security Policy”).
Personal Identifiable policy of Rowan University explains the information that is provided to the university is correct and authentic, no use of personal information would be done which is against the university policies. Personal information (PI) policy explains the information of the student that contains his First or last name associated with License number, social security number or biometric records. The policy made sure that the personal information if that contains some sensitive information would not be disclosed and remained in the database of the university (“Breach notification policy”). PII (Personal Identifiable Information) contains the information which could be used to differentiate or locate an individual’s identity, such as social security number, names, alone or when combined with other personal information or Recognize information which is associated or non-associated to other a particular individual such as time or birth date (“Breach notification policy”).
In Case of Policy Failure
The impact of policy would be negative on Rowan University if a single element of policy will breach. If the social security number or the driving license numbers provided by the student does not match or in other words is wrong, it will directly hit the image of the university. Stakeholders of an organization play an important role in keeping up the organization. It involves students, alumni, teachers, visiting faculty etc. breach of a policy would obviously pose a bad image of the university in public.
In case of disclosing sensitive information by a student or a faculty member or anyone who has the access to the computers in university, serious actions would be taken against him or her by the committee whose sole purpose is to maintain the security of the university. In case of a student, he or she will get expelled and will be made sure that he or she will not be able to get admission in any university. Evaluation comes in after the policy is being implemented in an organization or institution. It provides one with the information on whether to change or not the implemented policy in the organization. If any policy being implemented in the university is not producing the results that are desired or on which that particular policy has formed will result in changing the policy and implementing a new one.
First and foremost recommendation for the university is to secure the computers in such a way that any information that is sensitive and important could only be accessed by the permission of top management. The second recommendation would be asking the students or alumni or faculty members for their suggestions related to how the university should work what things they want to be done in the university. Secure the database with highly protected software to secure it.
Conclusion
It is essential to evaluate the policies implemented in the organization from time to time. Its results provide a better understanding of the goal or objectives on which policies have been made. Through continuous evaluation, a lot of small issues can be resolved if not then these issues will end up terminating the policy.
Works Cited
“Security Incident Management Policy – University Policies – Confluence”. 2018. Confluence.Rowan.Edu. Accessed March 16 2018.
“Information Security Policy – University Policies – Confluence”. 2018. Confluence.Rowan.Edu. Accessed March 16 2018.
“Breach Notification Policy.” Rowan University. www.rowan.edu. Web. 16 March 2018.
