January 26, 2024 – ECU users are responsible for the protection of any sensitive data in their custody. This includes electronic, print, voice or any other form in which the data is captured.
Examples of Sensitive Information
- Social security numbers (SSN)
- Credit/debit card numbers
- Driver’s license number
- Personally identifiable patient information
- Personally identifiable student information
- Personnel information
- Proprietary research data
- Legal data
Working with Sensitive Data: Do not download sensitive data from ECU administrative systems to a desktop, laptop, web server, smartphone, tablet or other device unless…
- Absolutely required
- Prior approval is obtained
- Physical security controls are active on the device
Download and Storage
- This information grid gives specific rules for storage and transmission of sensitive information.
- Piratedrive network storage and OneDrive cloud storage are approved for storage of sensitive data.
- Storage of credit or debit card information is prohibited anywhere on the ECU network.
- Never store sensitive information on a Web server.
- Never download or copy sensitive data to your home computer.
- Never store unencrypted sensitive data on any portable device – see the mobile device management service on storing sensitive data on a mobile device.
- Always store printed sensitive data in a locked desk, drawer or cabinet.