Skip to main content

University Policy 4.24
Interim Anti-Doxxing Policy

Cornell University’s Core Values binds us as a community with shared rights and responsibilities. In support of the aim of vitality in teaching and learning that leads to a passion for ideas and a commitment to seeking truth, Cornell community members should respect others’ rights to keep their personal information private. To ensure that that these core values can be realized by  every community member, it is imperative that Cornell community members respect the right of others to keep their personal information private. Accordingly, a Cornell student, faculty member, post-doctoral trainee, or staff member will violate this policy if they knowingly make Restricted Personal Information about a Cornell student, faculty member, or staff member publicly available:

  1. With the intent to threaten, intimidate, or incite the commission of a crime against the individual; or

  2. With the intent or knowledge that the Restricted Personal Information could be used to threaten, intimidate, or facilitate the commission of a crime against the individual. 

Criminal behavior associated with digital bullying or harassment can include, but is not limited to, harassment, stalking, assault, identity theft, or domestic violence.

For purposes of this policy, the following definitions apply.

  • Restricted Personal Information is information that identifies an individual that the individual has not made readily available to the public; or information that the individual has not authorized another person or organization to make readily available to the public. 
  • Restricted Personal Information can include, but is not limited to, non-directory information under the university’s FERPA policy; directory information for students who have opted out of providing public directory information; unlisted telephone numbers, email addresses, and physical or mailing addresses; and images, video, or sound recordings that are used to appropriate, distribute, share, or use someone’s identifying personal information or documents without the subject’s permission or published without the copyright holder’s permission.
  • However, restricted personal information does not include: information that is defined as public as a matter of law, regulation, or policy; information regarding a person’s public activities; or information related to a person’s activity in a public forum.
  • The enforcement of this policy is not designed to chill or prohibit lawful speech.

The university has also created a doxxing resource guide to assist anyone targeted by any such attacks. This guide will continue to be enhanced as additional tools and strategies are developed to support those who have been impacted.