Curious about how to handle your data and where to store it? Read on or open this PDF!
Different types of data fit into different categories, which inform us how the data should be treated. Minnesota State and Normandale each have a data security governance committee that determines how data is treated and who has access to it. Below is an example of how data is categorized. You will find more information in the attached PDF that you can access by clicking DataClassification_Chart.pdf on the right, as well as FERPA and appropriate use of Social Security Numbers.
Highly Restricted Data
Includes type of data:
- Social Security Numbers
- Bank Routing Numbers
- Credit Card Numbers
- Passwords and PINS
- Personal Medical Records
- Biometric Records
- Investigation Data
- NDA Protected Content
Recommendations:
- Store only with IT approval
- Talk to Data Security
- Do not email
- Do not store on USB keys
- Do not access or store on any personal devices
- Delete when done!
Restricted Data
Includes type of data:
- Student Grades / Schedule
- Class Lists / Photos /Attendance
- Transcripts
- Discipline Reports
- Donor Data
- Performance Reviews
- Log Usage
- Trade Secrets / IP
- Non Directory Demographics
- (age, race, ethnicity, veteran)
Recommendations:
- Store only with approval
- Store only on college provided resources:
- OneDrive & Office 365
- Network Storage
- Encrypted College Computer
- Avoid Emailing Restricted Data
- Removable storage must be encrypted
(Thumb drives & External Disks)
- Do not store in Google, Mozy, or Drop Box
- Delete when possible!
Low/Public Data
Includes type of data:
- FERPA Directory Data
- Preferred Name
- Local Address
- Email Address
- Dates of Enrollment
- Classification (FR,SO,JR,SN)
- Degrees Conferred
- Sports Affiliation
- Employee
- Job Title & Photo
- Work Location & Phone
- Email Address
- Salary
- Employment Dates
- Bestowed Honors
- Campus Maps
- Job Postings
Reccomendations:
- Share only with authorization