Generative Artificial Intelligence (AI) Guidance
Generative artificial intelligence (AI) tools offer many capabilities and efficiencies that can greatly enhance our work. When using these tools, members of the University community must also consider issues related to information security, privacy, compliance, and academic integrity.
Below are some guidelines on using and procuring generative AI tools such as OpenAI’s ChatGPT, Microsoft’s Bing, and Google’s Bard. Please note that these guidelines are not a new University policy, but are extensions of existing University policies.
1. Protection of University Data
The use of confidential data with publicly available generative AI tools is prohibited without prior security and privacy review. This includes personally identifiable employee data, FERPA-covered student data, HIPAA-covered patient data, and may include research that is not yet publicly available. Some grantors, including the National Institutes of Health, have policies prohibiting the use of generative AI tools in analyzing or reviewing grant applications or proposals. Information shared with publicly available generative AI tools may expose sensitive information to unauthorized parties or violate data use agreements. (Please see Policy 601 for definitions of confidential data and its use for more information.)
2. Responsibility for Content Accuracy and Ownership
AI-generated content may be misleading or inaccurate. Generative AI technology may create citations to content that does not exist. Responses from generative AI tools may contain content and materials from other authors and may be copyrighted. It is the responsibility of the tool user to review the accuracy and ownership of any AI-generated content.
3. Academic Integrity
4. Procuring and Acquiring Generative AI Tools
Generative AI systems, applications, and software products that process, analyze, or move confidential data require a security review before they are acquired, even if the software is free. This review will help ensure the security and privacy of University data. Please contact IT Services at firstname.lastname@example.org before acquiring or using any tools, add-ons, or modules that include generative AI technology with University confidential data, even if they are free. For more information, see the Policy on the Use of External Services and the Policy of Procurement and Engagement.
If you have questions about the guidelines, please contact: