Sensitive data is defined as information that is protected against unwarranted disclosure. Access to sensitive data should be safeguarded. Protection of sensitive data may be required for legal or ethical reasons, for issues pertaining to personal privacy, or for proprietary considerations.

 

What is Sensitive Data?

Sensitive Information includes all data, in its original and duplicate form, which contains:

Learn More

Securing Sensitive Data

Click Learn More to find a checklist can be used as a guide for securing computer systems containing sensitive data. If you suspect a compromise has occurred, please contact ITS Help immediately at 962-HELP and ask for a Remedy ticket to be created that informs ITS Security about the suspected compromise. To minimize the compromise, disconnect your computer from the network by either physically unplugging the network cable or disabling the wireless connection or both.

Learn More

Sensitive Data & Cloud Storage

Currently, there is no policy on cloud-based storage of non-sensitive information. Services like DropBox can be used for non-sensitive data. The guidance from the Information Security Office (ISO) is that for storing sensitive information with third party cloud storage providers, other storage providers, or Software as a Service (SAAS) providers, contractual provisions must be in place that protect the security and privacy of University-owned data.

Examples of third party cloud storage providers, other storage providers, or SAAS providers include DropBoxiCloudGoogle Docs, and Amazon Simple Storage Service (Amazon S3), among others. Please note that the foregoing list is not meant to be exhaustive.

Learn More