PantherTech Support

Mandatory Reporting of Child Pornography by IT Professionals

Policy Statement

It is the policy of Eastern Illinois University that child pornography or child pornography related material discovered on any Eastern Illinois University computer, network, server, e-mail account or other electronic device must be reported to the Information Technology Security Officer as well as to the Cyber Tip Line at the National Center for Missing and Exploited Children and Eastern Illinois University’s Police Department

Reason for Policy

This policy is established to ensure that all Eastern Illinois University IT professionals understand their responsibilities under the State of Illinois’ “Illinois Child Online Exploitation Reporting Act” (325 ILCS 47/)

Entities Affected By This Policy

Any Eastern Illinois University faculty or staff member that is responsible for the maintenance or administration, either in whole or in part, of any Eastern Illinois University computer, network, server, e-mail account system, or other electronic device.

Contacts

Questions about this policy should be directed to:

EIU Information Security 217-581-1939

Director of Human Resources 217-581-3514

Definitions

Child Pornography – Any means of depicting or promoting sexual abuse of a child, including print and/or audio, centered on sex acts or the genital organs of children.

Child Pornography Related Material – Any evidence including, but not limited to, computer and network access logs, online chat logs, browser bookmarks and/or history or other online activity relating to Child Pornography.

IT Professional – Any faculty or staff member whose primary responsibility involves the maintenance or administration, either in whole or in part, of any Eastern Illinois University computer, network, server, e-mail account system, or other electronic device.

Normal Duties – Any task or duty for which the IT Professional has a responsibility to perform under their current job description and/or current job assignments.

Policy

If, during the course of normal duties, an Eastern Illinois University IT professional becomes aware that an EIU computer, network, server, e-mail account or other electronic device is currently or has in the past been used to create, store, edit or transmit child pornography or child pornography related materials, they must immediately report to Eastern Illinois University’s Information Technology Security Officer (ITSO) that evidence of child pornography has been found on an EIU computer, network, server, e-mail account or other electronic device.

When reporting the discovery of child pornography, Eastern Illinois University IT professionals must include the following information:

• What computer, network, server, e-mail account or other electronic device on which the child pornography or child pornography related material was discovered
• To whom the computer, network, server, e-mail account or other electronic device belongs
• When the IT professional discovered the evidence of child pornography or child pornography related material
• The purpose the IT professional had in accessing the computer, network, server, e-mail account or other electronic device when they discovered the child pornography or child pornography related material
• The nature (pictures, videos, documents, chat conversations, etc.) of the child pornography or child pornography related material

Upon notification of discover of child pornography or child pornography related material by an IT professional, the ITSO will initiate a series of actions to ensure that Eastern Illinois University complies with State and Federal laws as well as ensure the preservation of any evidence of child pornography or child pornography related material that may reside on an Eastern Illinois University computer, network, server, email account or other electronic device, including:

• The notification of the Cyber Tip Line at the National Center for Missing and Exploited Children as soon as reasonably possible;
• The notification of Eastern Illinois University’s Police Department;
• The notification of General Counsel’s Office as well as:
  • Human Resources if the computer, network, server, e-mail account or other electronic device belongs to an Eastern Illinois University faculty or staff member; or
  • The Office of Student Standards if the computer, network, server, e-mail account or other electronic device belongs to an Eastern Illinois University student; and

The coordination with Eastern Illinois University’s Police Department to ensure the preservation of any computer, network, server, e-mail account or other electronic device reported to contain child pornography or child pornography related materials as well as any log files relating to the computer, network, server, e-mail account or other electronic device.

The ITSO and any IT professional and/or Eastern Illinois University Office, Department, Group, faculty, student or staff member will provide unlimited access and support to an external law enforcement agency investigating the report of child pornography or child pornography related material at the request of the State or Federal government.

In addition, the ITSO, while working with Eastern Illinois University’s Police Department, Human Resources Department and/or Office of Student Standards, and Office of the General Counsel may initiate an separate, internal investigation of the computer, network, server, e-mail account or other electronic device reported to contain child pornography or child pornography related material if the University has sufficient staff and technological resources to ensure such an investigation would be done in a forensically sound manner following established digital forensic investigative techniques.

Related Documents

Illinois Child Online Exploitation Reporting Act

Last Date Reviewed: 05/23/2023