Installing and Reviewing the Results of a MyIDProtector Scan
The MyIDProtector self-audit tool is licensed by American University to help you identify and protect personal information stored on your Windows XP or Vista computer. All students, faculty, and staff are encouraged to install it from the DOWNLOAD SOFTWARE page under the TECHNOLOGY section of the my.american.edu Web portal to scan their computer, USB, and network drives for sensitive data.
This program looks for bank accounts, credit card numbers, social security numbers, mailing addresses, and phone numbers stored on your computer. Keep in mind that storing credit card and social security numbers alone are not a risk; however, one of these combined with a full name, for example, could lead to identity theft and regulatory risk for the University.
Click on the TECHNOLOGY link, and then select DOWNLOAD SOFTWARE.
Click the MYIDPROTECTOR link. Then, select SAVE.
Once the file has finished downloading, select OPEN or RUN from your browser. You will then see the following screen:
The installer will check for the Microsoft .NET Framework 2.0 SP2 system component. If not installed, it will start to download and install automatically.
After .NET Framework has downloaded and been installed, your computer may prompt you to RESTART. Click OK, if prompted.
Double-click the MyIDProtectorSetup3.0.2.exe file on your desktop.
When the installer opens, check the box to ACCEPT LICENSE AGREEMENT.
Click the NEXT button six times to accept the default settings.
Enter your WINDOWS USERNAME and PASSWORD. Then, click OK.
Click FINISH twice.
Scanning Your Files
After the installation completes, the MyIDProtector tool will start. You will see the screen below:
Click the START SCAN button to begin a scan. By default, the tool is configured to scan your My Documents folder for potential bank accounts, credit card numbers, social security numbers, mailing addresses, and phone numbers.
Click the down arrow beside SEARCH FOR THIS TYPE OF INFORMATION and SEARCH IN THESE LOCATIONS to customize where the scan is run and what it looks for.
When the scan is finished, you will see “Scan is Complete”. Click the Step 3: Review Scan Results tab. You will see a screen like the one shown below:
If the tool has found a file containing potentially sensitive data, click the plus sign (+) to expand the scan results. You may see results for Social Security Numbers, Mailing Addresses, and Phone Numbers. Each of these may be expanded to see the locations where data matching these categories was found.
Click the plus sign (+) beside the file to expand the location to see the data itself. Then, right-click the mouse button to select VIEW and DOCUMENT CONTENT.
Then, review the files found to determine if it poses a risk to you or the University. Please note: sometimes files are incorrectly flagged as containing sensitive data. This is called a false positives. For example, something flagged as an SSN may simply be a nine-digit number that resembles an SSN.
IMPORTANT: Sensitive data should not be stored on unencrypted computer drives (C drive, USB thumb drives). If there is a business requirement to store sensitive data, please place it on the network G and I drives.
This report generated by MyIDProtector does not automatically notify OIT or anyone else of the results – it is only available to you, on your local computer. You are responsible for taking action to protect any sensitive information stored on your computer.