- University Life
National Get Organized Month is an opportunity to reduce risk to the University by thinking about the type of data your office handles.
Begin by reviewing the University’s Data Classification Policy and considering some of the actions provided below.
This policy governs the privacy, security, and integrity of university data, especially confidential data, and the responsibilities of institutional units and individuals for such data. The policy was signed with an effective date of April 7, 2009. There are three levels of classification.
Confidential Data: Confidential data are considered the most sensitive and require the highest level of protection. Confidential data includes data that the university must keep private under federal, local, and state laws, contractual arrangements, or based on its proprietary worth. Confidential data may be disclosed to individuals on a strict need-to-know basis only.
Answer the following questions to determine whether the data is Confidential:
Official Use Only Data: Official Use Only data is generally private to the University. Access is limited to AU community members on a need-to-know basis and it is not generally available to parties external to American University.
Unrestricted Data: Unrestricted Data has no legal or other restrictions on access or usage and may be open to the university community and the general public.