Your Data

Data is now part of everyday life. Data is created when we type on a computer, when we talk on a phone, and when we walk down the street. It is a data-driven world where data is also very valuable. As part of the Maricopa Community Colleges community, we have a shared responsibility to each other in keeping our data safe. Here we explain what data is and how best to handle it.

 

Information Technology Directive (ITD) - Information Classification and Handling

 

Data Classification

Data Classification

 

Public

Non-sensitive information that can be freely released to anyone.

Examples would include:

  • Brochures and flyers
  • Public facing web pages
  • Campus maps
  • Administrative regulations

 

Internal

This is the default classification for data. Information intended for use only between employees and trusted partners.

Examples would include:

  • Student and employee ID numbers
  • Files containing internal activities
  • Standards and procedures

 

Confidential

Use of the following types of data requires extra sensitivity due to the significant potential for misuse and costly reporting requirements in the event of unauthorized access. If your work involves handling any of these types of data, you must receive special training in the protection of electronic information. In addition, any systems that process this data must employ additional security measures.

Types of sensitive information:

  • Name + ID - Social Security Number, Driver's License Number, Tax ID, Credit Card Number, Bank Account Number, Patient ID
  • Records - Student, Medical, Financial
  • Grade information
  • Computer passwords

 


 

Data Handling

Any time you are storing or sharing Confidential information, it is vital that the data be properly secured and protected to ensure confidentiality and integrity are maintained.  For more detailed information, please refer to the Information Technology Directive on Information Classification and Handling.

 

Internal and Confidential

  • Must be protected to prevent loss, theft, unauthorized access or disclosure
  • Must be stored in a closed container (i.e. file cabinet, closed office, etc.) when not in use
  • Must not be posted on any public facing website