There's no requirement for accreditation or certification as long as the tasks are done in accordance with the regulations.
They will be like any other service provider. You have to qualify them to perform the indicated activities. You have to ensure they have the equipment, training, ability, etc. to perform the tasks per the regulations. Thus, you have to know what that means. Applicable regulations may include 21CFR820 (QSR), 21CFR58 (GLP), 21CFR11 (ER/ES), etc. There may be others like HIPAA that need to be considered.
You'll need to assess the University to ensure that they can comply, documenting the approval just like any other supplier.
Side note: while not explicitly indicated by regulation, you'll want to be sure they follow Good Documentation Practices.