Janet Compliance


Janet’s Regulations and Policies

Janet is the high-speed network for research and education in the UK, provided by Jisc. Compliance with Janet’s regulations and policies is critical to ensure security, data protection, and network integrity. Look at a video that quickly explains Janet.

1. Key Regulatory Frameworks

  • Computer Misuse Act 1990: Addresses unauthorized access and misuse of network resources.
  • General Data Protection Regulation (GDPR) & UK Data Protection Act 2018: Ensures the protection of personal data within Janet-connected organizations.
  • Freedom of Information Act 2000: Governs public access to information held by public institutions.
  • Network and Information Systems (NIS) Regulations 2018: Focuses on the security of essential services and digital infrastructure.

2. Janet Network Acceptable Use Policy (AUP)

Defines what constitutes acceptable and unacceptable behavior on the network. Users must ensure:

  • Ethical and lawful use of the network.
  • No deliberate or negligent actions that could harm network security.
  • No activities that could bring Janet or affiliated institutions into disrepute.

3. Security and Data Protection Responsibilities

  • Access Controls: Only authorized personnel should have access to sensitive data.
  • Incident Reporting: Any security breaches must be reported to the institution’s IT security team and, if necessary, to Janet CSIRT (Computer Security Incident Response Team).
  • Encryption and Secure Communication: Required when transmitting sensitive or personal data.

4. Janet CSIRT (Computer Security Incident Response Team)

Provides a coordinated response to security incidents, supports institutions in handling cyber threats and attacks, and works with national and international cybersecurity organizations to improve network security.

5. Janet Eligibility Policy

Defines who can use the Janet network, including:

  • Higher education institutions
  • Further education colleges
  • Research organizations
  • Public sector bodies (if their use supports education or research)

6. Compliance and Consequences of Violations

Breaches of Janet policies may result in:

  • Suspension or termination of network access.
  • Disciplinary actions under institutional policies.
  • Potential legal consequences if laws are broken.

Regular audits and monitoring are conducted to ensure compliance.

7. Best Practices for Compliance

  • User Awareness Training: Regular security awareness programs for students and staff.
  • Strong Authentication Measures: Implementation of multi-factor authentication (MFA) for accessing sensitive systems.
  • Regular Security Assessments: Periodic network and system vulnerability scans.
  • Data Retention and Disposal: Compliance with GDPR guidelines for data storage and destruction.

Accessibility and Janet Compliance

While accessibility is not explicitly listed in Janet’s core regulations, institutions using Janet must comply with UK legal and ethical requirements for digital accessibility.

1. Accessibility and Legal Frameworks

  • The Public Sector Bodies (Websites and Mobile Applications) Accessibility Regulations 2018 (UK): Requires public sector websites and apps to meet WCAG 2.1 AA standards.
  • Equality Act 2010: Mandates reasonable adjustments to ensure digital services are accessible to individuals with disabilities.
  • Janet AUP (Acceptable Use Policy): Although it does not directly mention accessibility, it requires ethical and lawful use of the network, which includes making resources non-discriminatory and inclusive.

2. Why Accessibility Matters for Janet Users

  • Higher education institutions and research organizations using Janet must comply with UK accessibility laws, meaning that websites and digital services they provide should be accessible.
  • Web developers, including students working on web projects for institutions connected to Janet, should follow accessibility best practices to ensure inclusivity.
  • Failure to meet accessibility standards could lead to legal challenges, reputational damage, and exclusion of users with disabilities from accessing important educational resources.

3. Best Practices for Accessibility Compliance

If students or institutions develop web-based resources on the Janet network, they should:

  • Follow WCAG 2.1 AA guidelines.
  • Use semantic HTML elements like <header>, <nav>, and <article> for proper document structure.
  • Provide alternative text for images using the alt attribute.
  • Ensure keyboard navigability and avoid mouse-only interactions.
  • Use high contrast colors and resizable text for better readability.
  • Implement ARIA (Accessible Rich Internet Applications) attributes when necessary.

Janet Compliance for Student Web Development projects

For students developing a website while learning HTML, CSS and JavaScript, they should adhere to the following Janet compliance principles:

  • Ensure that website content is appropriate, legal, and aligns with educational purposes.
  • Avoid collecting personal data unless necessary and comply with GDPR regulations.
  • Use secure and ethical web development practices, such as HTTPS for hosting and avoiding malicious code.
  • Follow copyright laws when using third-party content like images, fonts, or text.
  • Maintain accessibility standards (WCAG) to ensure inclusivity for all users.
  • Report any security incidents or vulnerabilities to the institution’s IT department or Janet CSIRT.

Conclusion

While accessibility is not explicitly mandated by Janet policies, institutions using Janet are still legally required to ensure their websites and services comply with UK accessibility laws. Therefore, students and web developers should incorporate accessibility best practices when developing websites, especially for public-sector educational institutions.