OIT Office of Information Technology
| Menu

Wireless Internet - Wi-Fi Data Transparency

CU Boulder provides Wi-Fi services to students, faculty, staff and guests. These services collect limited data as devices connect to them.

How do we collect Wi-Fi data?

Wi-Fi access points (APs) automatically produce and collect logs.

 

What Wi-Fi data do we collect?

User & Device Information

CU Secure collects limited connection metadata that may include some or all of the following, depending on the scenario:

  • Timestamp of connection
  • Device's Wi-Fi MAC address
  • Your IdentiKey username, email address, or first and last name
  • Device's model and operating system
  • Device's relative location on campus based on the access point to which it is connecting

Operational Information

We also collect various service operational information, including:

  • Client counts
  • Client count per AP
  • Average Wi-Fi signal strength
  • AP utilization
  • Successful enrollments
  • Failed enrollments
  • Successful authentication
  • Failed authentication
 

How do we use Wi-Fi data?

Service Support

We may use Wi-Fi data to efficiently troubleshoot and resolve reported service problems, connectivity challenges, performance issues or stability concerns.

Student Success & Service Improvement

We may use aggregated and anonymized Wi-Fi data to identify usage trends and constraints, inform Wi-Fi service improvements, and support teaching and learning outcomes.

 

How long do we retain Wi-Fi data?

As a highly critical service, per APS 2006 we adhere to the CU records retention schedule covering Information Security Records for User & Device information (18 months).

Operational information is typically retained for internal operational improvement and reporting purposes for a period of 30 to 365 days.

 

How do we share Wi-Fi data?

CU Boulder generally will not share personally identifiable Wi-Fi data with any outside entity.

If necessary to respond to a life-threatening situation or to preserve public health and safety, Wi-Fi data may be shared with law enforcement in alignment with university policy and practices.

As with all Colorado Open Records Act (CORA) requests, CU Boulder strictly adheres to APS 2022 and CU's CORA request process, and, to the extent possible, withholds information allowed by the exceptions and exclusions to CORA in an effort to protect individual privacy.

For questions about these uses, please contact security@colorado.edu.

 

What information does CU Secure Wi-Fi acquire from your device?

CU Secure Wi-Fi uses certificate-based authentication, allowing your device to connect to CU Secure automatically after initial registration.

Information used includes the following:

  • For personal devices, this connection uses first name, last name, email, IdentiKey, and the device's operating system.
  • For university devices enrolled in the Secure Computing framework, only the device's serial number is used.