Document Comments

Bulletin Board - Review and Comment

Step 1 of 4: Comment on Document

How to make a comment?

1. Use this Protected Document to open a comment box for your chosen Section, Part, Heading or clause.

2. Type your feedback into the comments box and then click "save comment".

3. Do not open more than one comment box at the same time.

4. When you have finished making comments click on the "Continue to Step 2" button at the very bottom of this page.

 

Important Information

Your connection may time out due to inactivity. To avoid losing your comments, we suggest:

  1. Do not jump between web pages/applications or log comments for more than one document at a time.

  2. Do not leave your submission half way through. If you need to take a break, submit your current set of comments. The system will email you a copy of your comments so you can identify where you were up to and add to them later.

  3. Do not exit until you have completed all three stages of the submission process. Your feedback will not be saved until you prove you are human.

 

Security Policy

Section 1 - Preamble

(1) Charles Darwin University (‘the University’, ‘CDU’) is committed to ensuring a safe and secure environment for the University community and University assets.  Security is a shared responsibility and is integral to the University’s governance, risk management and business continuity standards. 

(2) The University has the right to regulate access to University premises and to control the entry of persons and their operations within the premises. 

(3) The University will undertake its activities in a manner whereby:

  1. all members of the University community, including students and other clients, staff, visitors and contractors, are provided with a safe and secure environment in which to function;
  2. precautions are taken to protect physical and digital assets from crime, misuse, loss, damage or disruption; and
  3. there is a cohesive system of proportionate, risk-based security controls, including closed-circuit television (CCTV), access control, and physical and logistical controls which enable the University to maintain business continuity.
Top of Page

Section 2 - Purpose

(4) This policy provides the framework for the management of the University's security of people, physical assets, and operations.

Top of Page

Section 3 - Scope

(5) This policy applies to

  1. all staff, students, visitors, volunteers, and contractors of the University;
  2. all campuses, study sites, residences, events, activities and off-campus locations owned, operated, leased or otherwise controlled or undertaken on behalf of the University;
  3. University assets, including buildings, infrastructure, systems, equipment, various security surveillance technologies, such as closed-circuit television (CCTV) and access control systems, and, as far as practicable, property and equipment brought on campus by staff and students; and
  4. physical access and entry into University-owned or operated spaces.

(6) It does not apply to:

  1. premises managed or utilised by partner organisations; and
  2. the security of University information, financial assets or reputation, or the management of emergencies and critical incidents as these matters are dealt with under other relevant University policies and procedures. 
Top of Page

Section 4 - Policy

(7) Property and Facilities (PF), on behalf of the University, will manage security in a manner that supports compliance with relevant legislation, regulatory obligations, applicable standards, and University governance documents, including the Privacy and Confidentiality Policy

(8) Breaches of security will be reported in accordance with legislative requirements and University governance documents.

(9) Security standard operating procedures will be developed, maintained and monitored to safeguard:

  1. personal security, so that individuals are protected from criminal and offensive behaviour, including threats to personal safety, and damage to or loss of personal property;
  2. physical security, so that University and tenant property, infrastructure and equipment are secured against loss, deterioration or damage;
  3. administrative security, including policies and procedures, incident reporting, emergency management and business continuity procedures, and threat, risk and hazard assessment, management and mitigation;
  4. information and cybersecurity, in alignment with the Information Security and Access Policy; and
  5. security awareness education and training.

(10) The University is committed to:

  1. providing appropriate resources to develop and maintain an effective approach to security;
  2. achieving and demonstrating achievement of this policy through a program of audits and reporting the findings of those audits;
  3. regularly reviewing the implementation and effectiveness of this policy with staff, students, other clients and stakeholders;
  4. basing security arrangements on risk assessment and risk appetite, so that cost-effective counter-measures can be introduced to protect the University and ensure continued viability (refer to the Enterprise Risk Management Policy);
  5. developing, reviewing and promulgating University governance documents to assist in the implementation and understanding of this and other related policies and procedures; and
  6. identifying competency needs and providing appropriate training and professional development for staff to meet those needs.

Closed-circuit Television (CCTV) and other surveillance technologies

(11) The University may use CCTV and other surveillance technologies for legitimate University purposes, including:

  1. enhancing the safety and security of members of the University community and visitors;
  2. protecting University assets and infrastructure;
  3. deterring and detecting unlawful or unauthorised activity; and
  4. supporting incident response, investigation and business continuity

(12) CCTV and other surveillance technologies will only be used where they are necessary, proportionate, and reasonably aligned with identified security risks.

(13) Personal information collected through surveillance will be handled in accordance with the University’s Privacy and Confidentiality Policy and the Information Security and Access Policy.

(14) Access to surveillance data will be restricted to authorised personnel with a legitimate business need and will be managed in accordance with University governance documents.

(15) Surveillance data may only be used for the purposes for which it was collected, or for other lawful purposes, including investigations, safety management, or as required by law.

(16) Disclosure of surveillance data to external parties will occur only where authorised, lawful, and appropriate, including to law enforcement or regulatory authorities.

(17) Surveillance data will be protected through appropriate technical and administrative controls to prevent unauthorised access, misuse, loss or alteration.

(18) The retention and secure disposal of surveillance data will be managed in accordance with legislative requirements, records management obligations, and the Records and Information Management Policy and Procedure.

Access to University Premises

(19) Access to University premises is the responsibility of and controlled by Property and Facilities. 

(20) Staff, students and other persons with a legitimate reason to access University premises may enter these premises, provided that:

  1. entry has not been prohibited by any security officer or by any law or regulation; and
  2. they comply with any conditions which may be applicable to their access to the University premises.

(21) All members of staff (including contract and casual staff) and students of the University are issued with CDU identification cards, which must be:

  1. carried during attendance at University premises; and
  2. shown in response to any reasonable request from any security officer or from any other member of staff who might require such identification in the course of their duties.

(22) Any person can be requested to leave the University premises if there is reason to believe that the person has no legitimate reason to be present, and the assistance of the Police can be sought to have that person removed if necessary. 

(23) Any person who requires access to University premises outside of normal operational hours must obtain prior permission through their department or faculty. 

Specific Responsibilities and Authorities

(24) The Director Property and Facilities is responsible for the coordination and operational delivery of security services across the University.

(25) Senior Executive Team (SET) members are responsible for ensuring that the Security Policy is implemented in their organisational units and for monitoring compliance. 

(26) Managers are responsible for ensuring compliance with the Security Policy within their areas of responsibility.

Top of Page

Section 5 - Non-Compliance

(27) Non-compliance with governance documents is considered a breach of the Code of Conduct – Staff or the Code of Conduct – Students, as applicable, and is treated seriously by the University. Reports of concerns about non-compliance will be managed in accordance with the applicable disciplinary procedures outlined in the Charles Darwin University and Union Enterprise Agreement 2025 and the Code of Conduct – Students.

(28) Complaints may be raised in accordance with the Code of Conduct – Staff and Code of Conduct - Students.

(29) All staff members have an individual responsibility to raise any suspicion, allegation or report of fraud or corruption in accordance with the Fraud and Corruption Control Policy and Whistleblower Reporting (Improper Conduct) Procedure.