The use of generative artificial intelligence tools, including ChatGPT, Bard, and DALL-E (collectively “GenAI Tools”), has increased significantly in recent years and these GenAI Tools are being utilized by many different educational institutions to help fulfill business, research, or academic functions. While UTA is exploring all the ways in which GenAI can help us achieve our vision and mission, we must consider the inherent risks of using this technology.
This advisory, jointly produced by the Information Security Office, the Office of Legal Affairs and the AI Steering Committee gives the following guidance for UTA employees on how to use GenAI Tools safely, without putting personal, proprietary or university data at risk.
Allowable Use:
- GenAI Tools may be used with data that is publicly available or defined as Public by UTA’s Data Classification Standard (Login required).
- In all cases, GenAI Tools use must be consistent with UTA’s and other relevant policies.
- Consistent with this guidance, faculty should state in the course syllabus any allowed or limited use of GenAI Tools within the course within the context of this guidance.
- Any use of GenAI tools installed on a computer controlled by UTA or under a vendor contract that specifically protects university data and its use in the AI model may be designated as a permittable tool for use with non-public data classifications in accordance with relevant policies.
Prohibited Use:
- In general, student records subject to FERPA, health information, proprietary information, and any other information classified as Confidential or Controlled under UTA’s Data Classification Standards must not be used within public AI models.
- Gen AI Tools of any sort cannot be used for any activity that would be illegal, unethical, fraudulent or violate any state or federal law or UTA or UT System policies.
Liability:
- It is imperative that UTA employees understand that all content entered into, or generated by, a public GenAI tool are available to the public. There is currently no inherent data security and privacy protections when using a public GenAI tool. Consequently, the use of public AI Tools at this time could expose individual users and UTA to the potential loss and/or abuse of sensitive data and information.
- Many publicly available GenAI tools require click-through agreements. Click-through agreements are contracts. Individuals who accept click through agreements without authority may face personal consequences, including responsibility for compliance with terms and conditions. It is recommended to process all GenAI Tools through UTA’s TAP process to ensure appropriate use.
Additional Guidance:
- For further guidance on the use of GenAI Tools, please visit this AI website at ai.uta.edu.
- For security concerns, please contact the Information Security Office at security@uta.edu.
Sincerely,
Cheryl Nifong
Chief Information Security Officer
Information Security Office
security@uta.edu
It would be good for the author to include a list of approved AI tools that don’t provide confidential data to the learning model.
Hi Greg,
Unfortunately, it’s not that simple. As Dana wrote in “AI Delivers People“, the same product may have different privacy models depending on how it is procured.