Purpose
WeChat, a product of Chinese company TenCent, is a messaging application with a wide range of consumer and business functionality. From a business perspective, the app allows organizations to publish updates, engage users, and more.
This Operating Standard prohibits accessing WeChat through installation and use of this application to conduct University business, pursuant to communication issued by Vice Chancellor and Chief Information Officer Mark Henderson on July 22, 2025.
Scope
This Operating Standard applies to all University Community Members engaged in University business activities.
Definitions
- Direct Use – installation and use of the WeChat application on any device owned by the University of Pittsburgh including mobile devices, accessing WeChat over PittNet, or using it in connection with any University Computing Account.
- Indirect Use – use through a third-party vendor that uses the WeChat application to perform services on behalf of the University where the WeChat software is not utilized on any University system, mobile device, direct access to WeChat over PittNet, or direct use from a University Computing Account.
- University Computing Account – accounts granted to and used by a University Community Member that permits access to any or all University Computing Resources and PittNet (as defined in University Policy AO 10)
- PittNet – the data communications network operated by the University to provide access to University Computing Resources as defined in Policy AO 38 – University Network.
- University Computing Resource – any computing device, system, or application provided by the University including, but not limited to, examples given in Policy AO 10.
- University Community Members – students, faculty, staff, contractors, guests, and any members of the general public granted permission to access and use University Computing Resources.
Operating Standard
WeChat, while offering potential benefits for promotional and engagement purposes, poses significant security concerns. For this reason, WeChat may not be used directly by any University Community member for University business purposes including, but not limited to, student recruitment and engagement efforts.
While direct use of the WeChat application is prohibited, units may contract with third parties who use the application provided that established procurement processes have been followed including a Vendor Security Review and approval by Pitt Digital Information Security. The following restrictions on indirect use apply:
- Indirect use may not include University proprietary information or data that is classified as private or restricted according to the Pitt Digital Data Risk Classification and Compliance Operating Standard.
- Indirect University business is strictly limited to student recruitment and engagement purposes. Any other proposed use requires written approval from Pitt Digital Information Security.
Noncompliance
University Community Members must comply with this Operating Standard, University policy, and all applicable laws and regulations. Noncompliance may lead to disciplinary action consistent with University Policy, Staff Handbook, Faculty Handbook, Student Code of Conduct, or Collective Bargaining Agreements, and may also result in suspension or termination of access privileges. Concerns relating to noncompliance may be reported through the Pitt Concern Connection and will be referred to the appropriate University authorities for review.