ATI/IT Procurement Review

glasses sitting on braille text

Overview

The CSU and Cal Poly Pomona are committed to ensuring that all of its programs and services are accessible and usable by all students, staff and faculty, including those with disabilities. Accessible procurement reviews are conducted with the following standards: Section 508 of the Rehabilitation Act, WCAG 2.1AA, and WAI-ARIA.

Do I need an ATI/IT Procurement Review?

All Information & Communication Technology (ICT) items are reviewed for compliance with accessibility and security standards.

What is ICT?

  • Anything that creates, stores, or transfers digital information.
  • Information technology and other equipment, systems, technologies, or processes, for which the principal function is the creation, manipulation, storage, display, receipt, or transmission of electronic data and information, as well as any associated content.
  • Examples include websites, web applications, copiers/printers, instructional equipment and applications, video and multimedia products, software, operating systems, kiosks, desktop and portable computers, research applications, etc.

六色网 ATI/IT Review Process


  • Access the form by clicking on or search “ATI” on the campus homepage.

  • Attach any related invoice, requisition, compliance, grant, contracts or bid information to the ATI/IT Review request.   

* Includes requisitions, direct pays, & Pcards for State, ASI, 六色网 Enterprises, and Philanthropic Foundation purchases

  • Accessibility Information
    • Accessibility Conformance Report (also known as ): Vendor's testament of the accessibility strengths and limitations of their product in meeting the provisions of Section 508. The terms and conditions assigned to the PO reflect the vendor’s responsibility to comply with the accessibility statements represented within the submitted VPAT.
    • Accessibility Roadmap: The vendor's plan for addressing any known barriers to access for persons with disabilities. This includes items identified in the Accessibility Conformance Report as well as testing. (CSU Accessibility Roadmap Template (DOCX))
    • Testing Site: Test site and login credentials for accessibility testing if used for a campus service or instruction

  • Security Information (for systems with Level 1 and Level 2 information**)
    •  and/or SOC 2 Type II reports: Security documents to assess a vendor's information security compliance and practices.
    • PCI Attestation of Compliance: Payment card compliance documents required for applications that process payments.
    • User Access Review: Requester will be asked to provide a current list of users with access at the time of renewal. The department managers will approve the users with access to ensure it is current.

**Data Classification and Handling Standard (PDF)

  • Sub-reviews are created for IT&IP departments as needed to provide review in the review process. Areas include:
    • Accessibility: Perform and document accessibility compliance testing for websites and online applications as needed. Obtain vendor roadmap to address any accessibility risks. 
    • Audio Visual Technology
    • Data Analytics
    • Data Center/Cloud Services
    • Data Integration
    • End-User Computing
    • Networking
    • Privacy
    • Project Management
    • Research Computing
    • Security: Review security compliance information. Obtain roadmap to address security risks.

  • Contact requester with any compliance concerns
    • Review security risks, concerns and possible mitigations.
    • Document an Equally Effective Alternative Access Plan (EEAAP) (Word) for providing equitable, effective, and full participation in the use of the ICT product/service with consideration of any documented accessibility limitations.
  1.  

  • Escalate compliance concerns to the CISO and/or CIO.

  • Requester receives emails documenting the completed ATI and IT Review. Separate emails are sent from servicedesk@cpp.edu to the requester for the ATI and IT review.

  • The CIO's signature/review is required for ICT hardware purchases of $5,000 or more and software and IT services over $1000.

  • Combine the necessary paperwork and completed ATI and IT emails into one PDF.

  • Send via Adobe Sign first to Cynthia Morgan (ATI), cmorgan@cpp.edu, then John McGuthry (IT), CIO@cpp.edu for signatures.

  • Once signed, requester sends signed paperwork to Procurement & Support Services.

ATI/IT Procurement Resources

Contact Information

For more information about the ATI/IT review process, please contact Judy Shui (jtshui), Laura Carrizales (lcarrizales), or Carol Gonzales (carolhg).