Protecting Data

Documents for the handling of electronic information

These are provided to aid in understanding IT and other university policies.

Actions you can take to secure sensitive data

  1. What can everyone do?
  2. How do exposures occur and what should I do?

What can everyone do?

Identify where you have stored data under your control. In addition to your own workstation's hard drive, check to see if you have stored data on your departmental file server drives, your departmental or campus web servers, portable devices such as laptops or PDA's, and storage media (disks, USB keys, CD's, etc). You must ALSO identify where you have stored data on paper.

Inventory what data you have stored in ALL of these places.

Indiana University stopped using SSN as the student ID in the Fall of 2004. Therefore, it is important to review student records from prior to 2004, looking for SSN's. If you have spreadsheets of historical data that absolutely must be retained locally and electronically, simply highlight the column in which the SSN's are located, and delete just that column and all the SSNs in it. If your data is on paper, look especially for colored papers (rosters used to be printed on green or blue paper) or, for records prior to 1989, for oversized sheets (about 10" by 13") of white paper. If you absolutely cannot dispose of the entire sheet of paper, use scissors to cut out the columns of SSNs.

Also, UISO currently recommends a tool called Identity Finder which is designed to search your own data and other files stored in your individual computer accounts on University-owned systems. Please note the warning about following IT-07 the University's privacy policy, when using this tool.


Dispose of all Social Security numbers, credit card numbers, bank account numbers and access codes, driver's license numbers, and other sensitive personal information, unless you absolutely cannot do business without storing this information in your own storage locations. And we mean absolutely - if you can get access to that data from the official secured data source when you need it instead of keeping it yourself, even if that would be somewhat inconvenient, please DISPOSE of it!

Appropriate disposal means deletion from currently used drives (and then deleting your deleted items), securely wiping drives you no longer need, destroying storage media (disks, USB keys, CD's, etc.), and shredding paper.

  • Secure any remaining SSNs and other sensitive personal information. To do this you must KNOW which storage location is to be used for what purpose:
    • CONSULT with your departmental computing professional(s) to ensure you are securing this data sufficiently — that is, on a professionally secured file server and in encrypted format.
    • For paper records, ensure they are kept in locked file cabinets or are otherwise access controlled, for example, kept in a locked storage room
  • NEVER use personal storage mediums, such as flash drives, discs, or online storage options.
  • Utilize services available at IU, such as services offered by the Advanced Information Technology Core
Stop and Think
Stop and think whenever you come across or are handling Social Security numbers, credit card numbers, bank account numbers and access codes, driver's license numbers, and other sensitive personal information as part of your daily duties. Why do I have this data? Is it necessary for this transaction? If you do not absolutely need it to transact that business, DISPOSE of it! If you received that data from another source, TELL THEM not to provide it to you any more. If you do absolutely need it for the transaction, ENSURE you are handling it securely. DOUBLE-CHECK email addresses, fax numbers, telephone numbers before transmitting the data. CONSULT with your departmental computing professional(s) and/or the data stewards for that data to ensure you are handling it securely and appropriately.

How do exposures occur and what should I do?

How might sensitive personal information covered by relevant laws get disclosed or exposed?
Directly providing any of these data elements to a person external to IU, verbally, on paper, or electronically is a disclosure. Depending on the circumstances, data may also be considered disclosed or exposed if the computer upon which the data is stored is compromised or stolen; if a web page is made available with the data on it; if paper records with the data are disposed of without shredding or the use of another secure disposal method; or if computer disks are disposed of without following one of the methods described in UISO's document, Securely Removing Data.
For more information, see our page about Relevant Data Protection Laws.
Pitfall - Saving to the wrong locations

Pitfall - Saving to the wrong location. If you're not careful, it's easy to save sensitive information to the wrong location; either intentionally or unintentionally. Saving sensitive information to shared disk space or to a server with web services often results in sensitive data exposures. Did you know that saving data to a web server makes it publicly available, whether or not you provide a link to it from your web pages!

Mobile storage devices or media are convenient but can be easily lost or stolen. Data saved to these types of devices (laptops, USB or "thumb drives", CDs, diskettes, tapes, or any removable media) can be exposed if the device or media is lost.

Remedy - Always be mindful of where you store sensitive data. Ideally, is should be in a private area on a secure server. Use encryption, especially if you must store sensitive data on portable storage devices or laptops.

Pitfall - Not knowing where your sensitive data is

Pitfall - Not knowing where your sensitive data is. Sometimes a file is shared for a legitimate reason, but the file contains sensitive information of which sharer is not aware (like social security numbers).

Remedy - Know what ALL the data elements in a file are before you share it. If it contains sensitive information, sanitize the document before sharing it.

Pitfall - Human Error

Pitfall - Human error. Sometimes data can be exposed by simply no