Privacy and Security Program
Employs the University standard framework for classification of documents and information in terms of levels of sensitivity or security (such as Public, Internal Use Only, Confidential, etc.).
Construct an inventory of document types that contain sensitive information such as trade secrets and personally identifiable information (PII). For each data classification (security level), identify the required minimum set of controls and safeguards that custodians and systems must apply to ensure adequate data protection.
- Data Classification Standard Development
- Sensitive Information Types Inventory
- Controls and Safeguards Requirement Identification