To: Brian K. Flewelling, Public Works Committee Chairperson
From: Michael Dawisha, CIO
title
RE: Approval to adopt the Genesee County’s updated Technology Use Policy
recommendation
BOARD ACTION REQUESTED:
Approval to adopt the Genesee County’s updated Technology Use Policy
BACKGROUND:
Genesee County relies on technology every day to deliver services, support internal operations, and protect information. As technology use has expanded across departments, work locations, and devices, it has become important to have one clear, Countywide standard that explains what acceptable technology use looks like and what users are responsible for when using County resources. The intent is to establish a single, updated policy framework that can be applied consistently across County operations and maintained over time as technology and security risks continue to change.
DISCUSSION:
Adoption of the Technology Use Policy establishes Countywide guidelines for the appropriate use of County-provided networks, computers, internet access, and devices by all employees, contractors, and authorized users, both on and off County premises. The policy standardizes secure access and handling of County resources by requiring multi-factor authentication for County systems and clarifying that personal phones may be used only for identity verification through approved MFA apps. It also limits personally owned device use by restricting BYOD to personal cell phones and prohibiting County business, communications, and data storage on personal devices, while requiring County data to be stored and shared only through approved systems and secure methods. The policy supports remote and hybrid work by requiring a secure work environment, mandatory VPN access, use of County-owned devices for County work, and restrictions on printing County documents at home unless authorized. Responsible use of AI is permitted when IT-approved tools are used, sensitive data is not entered into unapproved systems, and users complete human review and remain accountable for accuracy and compliance. Finally, the policy supports consistent operations by establishing incident reporting expectations and annual cybersecurity training, clarifying appropriate monitoring for security and compliance purposes, and outlining how violations will be addressed. It also consolidates and replaces prior technology-related policies upon issuance.
IMPACT ON HUMAN RESOURCES:
There is no impact on Human Resources.
IMPACT ON BUDGET:
There is no impact on the budget.
IMPACT ON FACILITIES:
There is no impact on Facilities.
IMPACT ON TECHNOLOGY:
Reviewed and submitted by IT.
CONFORMITY TO COUNTY PRIORITIES:
This policy aligns with Healthy, Livable & Safe Communities by improving security controls and data handling standards, supporting continuity of County services and protecting sensitive resident information from misuse or unauthorized access.
resolution
TO THE HONORABLE CHAIRPERSON AND MEMBERS OF THE GENESEE COUNTY BOARD OF COMMISSIONERS, GENESEE COUNTY, MICHIGAN
LADIES AND GENTLEMEN:
BE IT RESOLVED, that this Board of County Commissioners of Genesee County, Michigan (“Board”), hereby adopts and authorizes the implementation of the attached Technology Use Policy (“Policy”).
BE IT FURTHER RESOLVED, that this new Policy supersedes any and all current or past polices related to technology use, that any other resolutions or policies related to technology use adopted by this Board are hereby rescinded, and that this Policy shall remain in effect until further action of this Board.
Attachment