Main Nav

Hello all,

I’ve seen other U’s that have the email directory behind the portal log-in—still allows for collaboration, but is not “public” or open to the world.  I would love to see this model here—just cuts down on external crawling of our site and protects the users.


We have 2 things at KU—one a student may choose to restrict their email address from showing up in the public/online directory if they do that in the privacy settings.


Second, at KU we have email as directory info, however, our policy states that email in bulk is not released due to privacy issues.

Further, our state Open Records/Sunshine laws allows us to not provide bulk listings e.g. name + email of all students if the requesting party is asking for the listing for purposes of selling goods or property to the list.  So you might check your state Sunshine Laws if you are a public and see if there may be an exception to disclosure of this type of info.


Just a couple thoughts.  Has anyone with the information “behind the portal” experienced issues?


Rock Chalk~


Everyday is a Data Privacy Day

Respect Privacy | Safeguard Data | Enable Trust




Jane Rosenthal

Director | Privacy Office

Custodian of Public Records

785.864.9528 | Fax 785.864.4463 | 



Please consider this as a KU business communication and handle according to policy.  Please consider the environment before printing this note.

Thank you



smime.p7s7.13 KB


We have both public and behind a login - you can get a limited number of lookup responses without logging in, but if you want to browse the directory, you need to login first. We have had enterprising students use their login credentials to mine (and sell) copies of our directory to spammers, so putting it behind a portal does not fix the problem, it only slows it down. My 2 cents Joel Joel Rosenblatt, Director Network & Computer Security Columbia Information Security Office (CISO) Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033 Public PGP key

For schools that leave the e-mail directory open to students and define it as FERPA non-directory information, isn’t that a FERPA violation (because students aren’t university officials with a legitimate education interest)? For those schools that define e-mail as FERPA directory information but require login to access, can’t FOIA requests still get the data?





Annual Conference
September 29–October 2
Register Now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.


Digital Badges
Member recognition effort
Earn yours >

Career Center

Leadership and Management Programs

EDUCAUSE Institute
Project Management



Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.


EDUCAUSE organizes its efforts around three IT Focus Areas



Join These Programs If Your Focus Is


Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.



2014 Strategic Priorities

  • Building the Profession
  • IT as a Game Changer
  • Foundations

Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.