We advise the Rectorate and are available to the heads of the organisational units at RUB as a point of contact for fundamental questions or requests for advice on information security:

• Contact

The Information Security office maintains a reporting system for incidents affecting information security at RUB. Users and affected parties can report misuse of IT systems or security-related incidents (anonymously if desired). Third parties also report to us any dangers posed by RUB IT systems, misuse of their resources from the RUB computer network, or potential threats to RUB IT.

• Reporting IT security incidents
• Transmission of data upon request for information
• Passwort Leaks

Since the EU General Data Protection Regulation came into force (25 May 2018), Art. 33, a reporting obligation may arise under certain circumstances: If the protection of personal data is violated, e.g. because such data has been misdirected or IT devices/USB sticks have been lost, the State Commissioner for Data Protection and Freedom of Information must be notified immediately (within 72 hours of becoming aware of the violation). The Information Security Officer and the Data Protection Officer are responsible for processing and reporting incidents at RUB. They also accept confidential or anonymous reports.

• Reporting data breaches (Meldung von Datenschutzverletzungen)

The Information Security office manages the information security process at RUB: initiates, coordinates and documents the development, implementation, monitoring and updating the information security regulations. It works together with RUB committees and stakeholders on IT/information security and data protection issues:

• Information Security Management System (ISMS)