Sensitive data is defined as information that is protected against unwarranted disclosure. Access to sensitive data should be safeguarded. Protection of sensitive data may be required for legal or ethical reasons, for issues pertaining to personal privacy, or for proprietary considerations.

 

What is Sensitive Data?

Sensitive Information includes all data, in its original and duplicate form, which contains:

Learn More

Securing Sensitive Data

Click Learn More to find a checklist can be used as a guide for securing computer systems containing sensitive data. If you suspect a compromise has occurred, please contact ITS Help immediately at 962-HELP and ask for a Remedy ticket to be created that informs ITS Security about the suspected compromise. To minimize the compromise, disconnect your computer from the network by either physically unplugging the network cable or disabling the wireless connection or both.

Learn More

Sensitive Data & Cloud Storage

The Information Security Office (ISO) guidelines, and University policy for the storage of sensitive data designate the use of Microsoft Office 365 (O365) for approved cloud storage. User guidelines on how to leverage these resources for both sharing and storage of institutional data are available in the help document:

User Guidelines for Storing and Sharing Institutional Information in Office 365 SharePoint and OneDrive“.

The guidance from the ISO is that for storing sensitive information with third party cloud storage providers, other storage providers, or Software as a Service (SAAS) providers, contractual provisions must be in place that protect the security and privacy of University-owned data.

Examples of third party cloud storage providers, other storage providers, or SAAS providers include DropBoxiCloudGoogle Docs, and Amazon Simple Storage Service (Amazon S3), among others. Please note that the foregoing list is not meant to be exhaustive.

Learn More