Website Security Policy

  1. All Union Pacific websites have been established by the Union Pacific Corporation and the Information Technology Departments of its subsidiaries.
  2. Two types of access have been established for UP websites:
    1. Public access sites contain information which is freely accessible, and may be viewed by any visitor. However, UP maintains a copyright interest in the contents of all of its websites. Information posted on public access sites may not be distributed or copied without obtaining permission from one of the members of the Union Pacific Web Content Team. Electronic information which is stored, transmitted, or processed on company computers or communication devices is the property of Union Pacific (please see the Copyright Notice).
    2. Customer information sites provide restricted access to sensitive and proprietary business information. Gaining access to some types of Web-enabled information will require customers to register to view, retrieve, or process data provided by Union Pacific. Parties so authorized may not divulge or transmit this information to other external parties without permission from the President or a Vice President of the Union Pacific Corporation or its subsidiaries. Failure to comply with this security policy is punishable through loss of access and possible legal action for damages
  3. User registration for secured access to a UP website may be required when:
    1. A Web application or internal link requires user identification before processing
    2. Accessed data has been classified as "business-sensitive" and requires further authorization.
  4. To facilitate site management, information may be collected for statistical purposes. Company computer systems can employ software programs to compile summary usage statistics, which may be used for assessing what information is relevant to users. The data so accumulated may be used to help determine technical design specifications, identify system performance, or pinpoint problem areas.
  5. Except for authorized security investigations and data collection, no attempts will be made to identify individual users or their usage habits. Accumulated data logs will be scheduled for regular deletion in accordance with schedules set by UP Web administrators. The UP Website Privacy Policy details UP's position regarding the use of personal information provided by customers/visitors.
  6. Unauthorized attempts to upload information or change information via any UP Web service are strictly prohibited, and may be punishable under the Computer Fraud and Abuse Act of 1986 and the National Information Infrastructure Protection Act.
  7. User ID and password policy:
    1. Access to sensitive or proprietary business information on UP websites is limited to customers, clients and vendors who have been determined to have an appropriate business reason for having access to such data. All registered Web customers who are granted security access will be identified by a user name (referred to as the User ID). All actions performed with a User ID will be the responsibility of the ID's registered owner. To register or to view the registration requirements, please see the Customer Registration Request.
    2. Individuals who are granted password access to restricted information on UP websites are prohibited from sharing those passwords with or divulging those passwords to any third parties. User will notify us immediately in the event a User ID or password is lost or stolen or if User believes that a non-authorized individual has discovered the User ID or password.
    3. UP's records will be final and conclusive in all questions concerning whether or not your User ID or password was used in connection with a particular transaction.
    4. By accepting password access to restricted UP website, the User agrees to protect the identity of the password from discovery by any unauthorized third parties. To protect against anyone acquiring your password, UP suggests the following security measures:
      1. Never give out your User ID or password.
      2. Your password should be changed immediately if someone else identifies it. Union Pacific policy prohibits the sharing of User IDs or passwords.
    5. The User is required to contact UP's eBusiness department if there are any changes in personnel accessing our website (ex., employee leaving company).
    6. Union Pacific will not be responsible for any damages caused by the unauthorized use of your account. You are responsible for all activities that occur under your account and password.
  8. If you have any questions or comments regarding the Union Pacific Website Security Policy, please contact the Webmaster by using the Feedback button, or email to webmaster@up.com.