Except where noted below, an active appointment or enrollment with Harvard Business School, or sponsorship by someone with an active appointment, is required for access to RCS resources. Each account must be tied to an individual, and it is expected that when that individual no longer has need of the account, they or their sponsor will notify us of their leaving. This is especially important if the account incurs a charge or has access to sensitive research data. If it's necessary to extend a user's access beyond their appointment/enrollment, accommodations can be made with Principal Investigator(PI)/faculty approval and by contacting the RCS staff.
Please contact firstname.lastname@example.org for any questions surrounding collaborator access.
Please note: Sharing of accounts is not allowed and in direct violation of security policies. RCS will immediately disable any accounts that have been shared and will also notify the sponsoring PI/faculty member.
Terms of Service
To obtain access to Harvard Business School’s technology resources through Research Computing Services (RCS), you must acknowledge this agreement indicating that you have read, understood, and accepted the statements in this agreement and that you agree to comply with applicable policies and laws governing the use of Harvard Business School’s technology resources and the protection of data privacy.
Account Creation Requirements:
Grid accounts are only available to HBS faculty and their sponsored collaborators, staff, and doctoral students. Collaborators must be sponsored by a faculty member, who must sign and agree to the Guest User Agreement form.
Grid Training Requirements:
Upon receiving Grid account information, users must attend a Introduction to the Compute Grid training session (Fall 2017: one can watch the Introduction to the Research Grid videos on the Grid website). Grid users must attend subsequent informative sessions about the Grid to ensure best practices, and to learn about new resources.
Before putting any Level 3 or 4 HRCI data onto the Grid, researchers must send their data plan and/or approved IRB proposals to RCS staff. Level 5 data may NOT be stored on the Grid. Furthermore, RCS staff should be notified if there are any changes made to the IRB.
Shared Resources Requirements:
When working on the Research Grid, users must understand that the Grid is a shared resource. If over-requesting resources (CPU cores and RAM) or allowing sessions to sit idle over long periods of time, these unused resources are still reserved exclusively for your use, which could instead be used by another person. Users should follow the Choosing Your Resources page on the Research Computing Grid Environment website to ensure that you select the CPU and RAM profile that best fits your work at hand.
All members of the Harvard Business School community, including guest users, have a shared responsibility to protect confidential information and critical HBS network resources. Harvard University has put policies in place to ensure that the integrity and privacy of confidential information are properly protected. Please review the full list of policies at http://security.harvard.edu (Click “Policy” in the banner).
These requirements include:
· Use strong passwords and do not share account credentials
· Use HBS confidential information only for work‐related purposes covered by this agreement
· Share HBS confidential information with others only for work-related purposes covered by this agreement
· Properly dispose of confidential information you no longer need to retain
· Immediately report any loss or possible unauthorized access to confidential information
· Immediately report loss of any of the devices on which you use confidential information
· Protect confidential information in your physical possession
· Properly protect confidential information when storing or transferring it
· Implement proper security features on all mobile/portable devices on which you use confidential information
· Read through and comply with Harvard University information security requirements at http://policy.security.harvard.edu/security-requirements that is appropriate for the data used
· Watch the Harvard "Know Your Data" security video: https://aware.security.harvard.edu/#!/video
Confidentiality Agreement (tailored for guest users):
As a user of the Harvard Business School Research Grid affiliated with a member of the HBS community, I understand that, in the course of my activities, I may have access to Confidential Information. For purposes of this Agreement, "Confidential Information" shall have the meaning set forth in the Harvard Enterprise Information Security Policy:
1. I understand that, I may have access to information that HBS considers confidential. I have reviewed and understand Harvard’s Data Classification as explained on http://security.harvard.edu/dct.
2. I will protect Confidential Information by having a strong password (see http://policy.security.harvard.edu/u4-strong-passwords) that I do not share with anyone for each of my Harvard accounts.
3. I agree that I will protect Harvard Data according to its sensitivity
- Level 3 data will only be stored on devices which have been fully encrypted. I understand that this requirement applies to both desktops/laptops and to mobile devices.
- Level 4 data will not be stored on any local device, including desktops, laptops, and mobile devices.
- Level 5 data may not be stored on the HBS Grid.
NOTE: for any questions concerning the appropriate classification of data, please refer to the Harvard University Data Classification categories listed at: http://security.harvard.edu/dct.
4. Except as required by my HBS sponsoring researcher, I shall not, either during my relationship with the Harvard Business School or thereafter, directly or indirectly use or disclose any Confidential Information (Level 3 or higher) without the prior written consent of HBS.
5. I agree that I will access only that Confidential Information that is necessary to perform my duties as a Harvard affiliate.
6. I will store Confidential Information in paper form securely.
7. I will report any breach of security of Harvard University Confidential Information that I learn about.
HBS Research Grid users must implement the required security features on all mobile/portable devices on which they use Harvard or HBS confidential information. If you cannot ensure a device meets the minimum system requirements, you will not use it to access HBS resources.
Computers ‐ Laptops and desktops
Use a complex password (Details on password complexity requirements can be found at http://policy.security.harvard.edu/u4-strong-passwords)
Set an inactivity timeout (i.e. my screensaver will come on within 5 minutes of inactivity)
Keep Antivirus and malware software up to date
Keep security patches up to date
Ensure my computer firewall is active
Ensure my computer is encrypted before downloading and/or storing any HBS information
Smartphones and tablets
Enable a password or access code
Set an inactivity timeout (i.e. my device will lock within 5 minutes of inactivity)
Erase data after 10 unsuccessful pin/password attempts
Devices must be encrypted.
Lost or Stolen Devices:
Research Grid users must notify HBS IT immediately in the event that any device which they have used for HBS business has been lost or stolen, or in the event that they believe that it may have been compromised by malware.
Removal of HBS Data:
Research Grid users must acknowledge and accept the agreement that, when they depart from HBS, they must remove all data stored on the Grid. Guest user collaborators of departing HBS sponsor must delete all HBS information from their computers and mobile devices. In the event that guest users have been authorized by HBS to retain a portion of this data, they should continue to safeguard it according to HBS standards.