Mission
The Technology Purchase Review Committee (TPR) provides consultation and guidance around the purchase of technology hardware, software, and services at the University of Tennessee at Chattanooga. This is achieved through:
- Evaluating potential purchases for technology hardware, software and services and submitting recommendations based on
- Reduction of duplication of existing hardware, software and services;
- Ensuring compatibility/Integration with existing technology
- Ensuring solution is properly supported (reduce support burden)
- Fostering campus-wide adoption of and collaboration on new or existing hardware, software and services;
- Taking part in cost effective system level agreements
- Ensuring the solution meets security compliance, including compliance with the Gramm-Leach-Bliley Act (GLBA) for any technology that handles student financial aid information or other sensitive student data.
- University departments must undergo a security risk review for third-party IT products/services via the UTC Classification and Impact Assessment processes which is built into this review.
- The UTC Technology Purchasing Review Committee will decide if a comprehensive security assessment is needed before vendor agreements are signed.
- Spreading awareness of existing or proposed hardware, software and services.
Composition and Assignment
The Technology Purchase Review Committee is chaired by the Associate CIO. The remaining committee will consist of representatives from:
- Procurement and Contract Services
- Finance and Administration
- Academic Affairs
- Enrollment Management and Student Affairs
- Other divisions on an adhoc basis depending on the nature and scope of the project or request
Current Membership (2024-2025)
- Tony Parsley - Information Technology (Co-Chair)
- Joel Wells - University Registrar - Academic Affairs
- Ken Guthrie - Procurement and Contract Services
- Tonia Martin – Enrollment Management and Student Affairs
- Allison Evans – Finance and Administration
Review Process
The Technology Purchase Review Committee is a standing committee that receives purchase requests at any time throughout the fiscal year. The TPR convenes as needed but will function primarily via email. The committee assesses purchases against technical, budgetary, and personnel dimensions of solutions against standards, specifications, and guidelines, including ensuring that the vendor complies with GLBA guidelines for safeguarding student financial aid information.
Upon completion of its review by the committee, the committee will respond with its written recommendation. Possible recommendations include endorsement of the sponsor’s purchase of specific hardware or software, adoption of a solution proposed by IT, or further action on the part of the sponsor (e.g., RFQ, RFI, RFP, or feasibility study).
If the proposed purchase involves student financial aid data or other personally identifiable information (PII), the review will ensure that GLBA safeguards are integrated, including encryption, access controls, and secure data handling practices.
Service Expectations
For purchase requests, the committee will respond to sponsors within two weeks of receipt. If a large backlog of requests prevents a reasonable turnaround response, the co-chairs will work with sponsors to adjust expectations of time. For purchases involving GLBA-regularted data, additional time may be required for the comprehensive security assessment to ensure compliance with all applicable data protection regulations.
Where do I start?
If you are not certain whether your technology purchase should go through the TPR process, please email techreview@utc.edu, and we will provide guidance within one business day. If the technology purchase involves handling student financial aid information or other sensitive personal data, a GLBA-specific review will be incoporated into the process.
Otherwise, click submit request to begin the process. You will be presented with a questionnaire that will gather some basic information to help the committee better understand your needs. The questionnaire will include specific questions regarding the handling of sensitive data, including whether the purchase requires compliance with GLBA.