The University has introduced a data classification scheme to ensure all University data is suitably protected.
There are four categories of data, ranging from public, through to highly confidential:
- public data: information intended for public use, or information which can be made public without any negative impact for the University.
- internal data: information regarding the day-to-day business and academic operations of the University. Primarily for staff and student use, though some information may be useful to third parties who work with the University.
- confidential data: information of a more sensitive nature for the business and academic operations of the University, representing the basic intellectual capital and knowledge. Access should be limited to only those people that need to know as part of their role within the University.
- highly confidential: information that, if released, will cause significant damage to the University's business activities or reputation, or would lead to breach of the Data Protection Act. Access to this information should be highly restricted.
Principle investigators must assess the data sets they expect to create or use during their research projects as part of their research data management plan and ensure that an appropriate level of security is put in place.
Information Services can provide advice or guidance on protecting electronic information assets if required.