好色先生

Procurement (ICT)

Latest News

ICT Process 123

Updated: 11/4/25

Accessible Information and Communication Technology Procurement at CSUDH

Section 508 requires that Information and Communication Technology (ICT) be developed, used, maintained, or procured to be accessible to individuals with disabilities. The CSUDH ICT procurement process helps ensure that all products and services purchased by CSU Dominguez Hills are accessible. This process applies to the purchase or adoption of ICT, regardless of cost or funding source (e.g., State, Foundation, Athletic Corporation, or Federal and State grant funds). The requirement for accessible ICT also applies to 鈥渇ree鈥 products, trial software or services, and any technology developed by the campus.

Accessible ICT Procurement Process

Important Note: Products subject to the ICT Procurement Process include any technology for creating, storing, and transmitting digital information.

The procurement process consists of three key steps:

  1. Pre-Purchase and Accessibility Information
    • Complete the .
  2. Accessibility Review
    • The Security and Compliance team evaluates accessibility barriers, requests vendor roadmaps, or statements.
  3. Outcome Notification

For Employees

The Information Security and Compliance Office requires all qualifying software and hardware purchases to undergo a security review using the HECVAT process. Before purchasing:

  • Ask your vendor to complete the appropriate HECVAT form.
  • Submit the completed form to ISO@csudh.edu or upload it with your procurement request.
Important Note: Purchases involving student or employee data require additional review. Legal, confidentiality, and security provisions must be added to contracts, and coordination with the vendor, Procurement, and InfoSec may take several weeks.

Medium and high-impact products or services require manual review and may require an Equally Effective Alternate Access Plan (EEAAP). These reviews typically take 60鈥90 days to complete. High-impact examples include:

  • Public-facing tools or large student/faculty/staff populations
  • Critical administrative or instructional tools
  • Components of a class or instructional program

For Vendors

The ICT Final Standards and Guidelines under Section 508 mandate WCAG 2.0 Level A and AA compliance. CSUDH adopts WCAG 2.2 Level AA when applicable.

  • Vendors must submit a current Accessibility Conformance Report (VPAT 2.5).
  • The is available from ITIC. CSU requires detailed ACR responses.
  • CSUDH may request .
  • Additional info is available at the .
Important Note for Vendors: Products involving Level 1 or Level 2 data must include a HECVAT or . On-campus software requires completion.

Security Review and Approval

CSU Vendor Security Posture Document Request

To assess risk, vendors may be required to submit or reports.

Security Documentation Requirements

The Information Security Office and the Office of the Dean of Students will review .

Procurement Process Integration

All qualifying software and hardware purchases must undergo a security review using HECVAT. All documentation is tracked in ITCA.

Important Note: Purchases involving student or employee data require more extensive reviews and contract clauses.

IT Approval and Oversight

  • Campus Impact: You may be asked to provide additional documentation for systems affecting IT infrastructure.
  • IT Oversight: System access and oversight are required for enterprise-level tools.

Hardware and Software Purchases

When submitting orders:

  • IT will first verify existing inventory or licenses.
  • All devices must be enrolled in Mobile Device Management (MDM).
    • Applies to all purchases regardless of funding source (State, Foundation, Athletic, Corporation, or Federal/State grants).

Apple Products

Apple purchases require an Apple Education Official Quote. Contact ISO@csudh.edu for support.