Summary: This article describes the governance by which the name spaces of websites, webpages, servers, and applications that represent Baylor College of Medicine are developed and maintained.
Approving Authority: Office of Communications & Community Outreach
Last Updated: Nov. 27, 2018
Purpose: The purpose of this governance is to ensure the standardized organization, naming, and secure handling of domains in which websites, web pages and applications that represent Baylor College of Medicine reside.
Scope: This governance applies to all websites, webpages, and applications within Baylor College of Medicine sponsored name space(s) including websites and webpages that do not exist on a Baylor root server and multi-institutional projects or entities that exist temporarily at Baylor.
a. The approved top-level domain for Baylor College of Medicine is bcm.edu. Vanity domains such as .org , .com, .net are not permitted without approval from the Office of Communications & Community Outreach, Institutional Web Management.
b. Domain extensions must use bcm.edu and not “baylor”.
c. Name extensions to bcm.edu are subject to approval by Office of Communications and Community Outreach, Institutional Web Management.
d. All domain names and extensions must be in adherence to branding guidelines.
e. Third level names (e.g.
Server, Load Balancers, and Security
a. The URL of all websites, webpages, and applications, including those not maintained by the Office of Information Technology, representing Baylor College of Medicine must live within the bcm.edu domain and registered with the Office of Information Technology’s Domain Management Group.
b. All domains, including those not maintained by the Office of Information Technology, must reside on a College owned server existing within the Baylor College of Medicine secured perimeter.
c. All domain names representing Baylor College of Medicine must be owned by Baylor College of Medicine. Domain names are considered intellectual property of Baylor College of Medicine. Content not approved by Institutional Web Management may be required to be removed from unofficial site.
d. Any site utilizing a Baylor domain name must comply with Baylor security policies.
Exceptions to this policy may include web applications that are not able to run in the College’s root server or content management system. Prior approval must be obtained from Institutional Web Management before launching such applications. The requester must demonstrate continued ability to maintain both the web application and any underlying servers. Servers will undergo initial and periodic risk assessments. Naming conventions for such stand alone servers would be as follows: name.research.bcm.edu or name.clinical.bcm.edu.
Exceptions to this policy may include multi-institutional projects or entities that are temporarily at Baylor, such as an editorship of a journal, or specialized web sites that are required by regulation. These must be submitted to Institutional Web Management for approval.
Deviations from this guidance will not be set up within the enterprise domain without approval from Institutional Web Management.
Any third-party sites that are found to deviate from this guidance without approval from Institutional Web Management will not be linked to from the enterprise domain including any variation to the top-level domain (bcm.edu) and may be shut down.
*Note: Policies cited in the Digital Governance document (approved by the Board and published in March 2019) supersede any previous agreement, policy and/or guideline.