Third-party Application Data Access Consent

Summary

This article describes what third-party app consent is and how to request a technology review for software applications that require consent to access organizational or personal information.

Body

App consent is the process through which you grant authorization to an application to access specific resources on your behalf.  These resources could include your organizations’ data or individual information. When you encounter an app that requests consent, it’s essentially asking for your permission to perform certain actions. This often includes the ability to access data and this data may include sensitive information that requires confidentiality.

What is Third-party Application Data Access Consent?


Application consent is the process through which you grant authorization to an application to access specific resources on your behalf.  These resources could include your organizations’ data or your personal information. When you encounter an application that requests consent, it’s essentially asking for your permission to perform certain actions. This often includes the ability to access data, and this data may include sensitive information that requires confidentiality or personal information you may not wish to share with a third-party.

Requesting Application Consent for Third-party Software

 We recognize that using third-party applications can offer convenience and efficiency. However, it is essential we exercise caution and consider the potential legal, privacy, and data security risks associated with these third-party applications.  Data shared with such an application may contain sensitive university or personal information. For example, if consented an application may have the ability to read your email or calendar appointments. Generally speaking, a third-party application's standard contractual language, included in most click-through consents, may  not demonstrate the company’s commitment to protect the privacy and security of your personal and university data. Therefore, applications that are not verified by Microsoft or already approved for use at OHIO will require a review prior to use. We strongly encourage our OHIO community members to refrain from using unverified applications. If your request is directly related to a course requirement, please follow up with your instructor.

Reviews will be processed within 30 (thirty) days of the request submission and once a review is completed the requestor will be notified via the IT ticketing system.

If you load an application that requires a review you will be presented with the following window.

 

Uploaded Image (Thumbnail)

In the window, please enter a justification for your request and click "Request Approval". Your request submission will prompt an email to you that includes  additional information about the review process.

Get help from OIT

  • For further assistance, please visit the Microsoft 365 page to submit a service ticket.

Additional resources

 

Details

Details

Article ID: 835
Created
Fri 3/22/24 4:21 PM
Modified
Tue 10/29/24 3:43 PM