iCIS Intra Wiki
categories: Info - Support - Software - Hardware | AllPages - uncategorized
Data Protection Policy: Difference between revisions
Created page with " a" |
No edit summary |
||
| Line 1: | Line 1: | ||
a | |||
We must follow the Radboud University’s data protection policy. | |||
Information below is copied from : [http://www.ru.nl/privacy/english/data/saving-files/] | |||
Where to best save information depends on its confidentiality classification. We distinguish between critical, sensitive and standard information: | |||
* Critical: personal details or information traceable to a person. | |||
* Sensitive: information that is commercially sensitive or confidential. | |||
* Standard: all other information. | |||
The table below shows which storage mediums are suitable for each confidentiality classification. | |||
|| | |||
||! ||!Critical ||!Sensitive ||!Standard || | |||
||!RU-folders ||Suitable ||Suitable ||Suitable || | |||
||!Portable devices ||Only if encrypted ||Only if encrypted ||Only if encrypted || | |||
||!FileSender ||Not permitted ||Permitted* ||Permitted || | |||
||!Edu groups ||Not permitted ||Permitted* ||Permitted || | |||
||!SURFdrive ||Not permitted ||Permitted* ||Permitted || | |||
''* ''''File encryption recommended'' | |||
!! Security measures | |||
Each information classification has applicable security measures that have been laid out in the university information policy. Sensitive data, for instance, may not be saved in a public cloud service such as Dropbox nor may it be sent through a service such as WeTransfer, as the security of the information cannot be guaranteed. | |||
Critical data may not be saved in a community cloud service, such as SURFdrive. RU storage is suitable for storing such information (home directories, departmental directories, work group folders). This type of storage enables us to know exactly who has access to the information and this access can be terminated as soon as someone leaves the university. In addition, access is only granted to RU staff and persons who have a formal working relationship with Radboud University. In SURFdrive, the owner of a folder decides who can access it (could be anyone) and this access is not terminated when someone leaves the university. | |||
Encrypting files means that they can only be opened by persons who have a unique key or password. If you want to share these passwords with others, make sure to use a different medium than the one you used to share the files, for instance SMS or WhatsApp. | |||
Revision as of 12:18, 22 December 2017
We must follow the Radboud University’s data protection policy.
Information below is copied from : [1]
Where to best save information depends on its confidentiality classification. We distinguish between critical, sensitive and standard information:
- Critical: personal details or information traceable to a person.
- Sensitive: information that is commercially sensitive or confidential.
- Standard: all other information.
The table below shows which storage mediums are suitable for each confidentiality classification.
|| ||! ||!Critical ||!Sensitive ||!Standard || ||!RU-folders ||Suitable ||Suitable ||Suitable || ||!Portable devices ||Only if encrypted ||Only if encrypted ||Only if encrypted || ||!FileSender ||Not permitted ||Permitted* ||Permitted || ||!Edu groups ||Not permitted ||Permitted* ||Permitted || ||!SURFdrive ||Not permitted ||Permitted* ||Permitted ||
* 'File encryption recommended
!! Security measures
Each information classification has applicable security measures that have been laid out in the university information policy. Sensitive data, for instance, may not be saved in a public cloud service such as Dropbox nor may it be sent through a service such as WeTransfer, as the security of the information cannot be guaranteed.
Critical data may not be saved in a community cloud service, such as SURFdrive. RU storage is suitable for storing such information (home directories, departmental directories, work group folders). This type of storage enables us to know exactly who has access to the information and this access can be terminated as soon as someone leaves the university. In addition, access is only granted to RU staff and persons who have a formal working relationship with Radboud University. In SURFdrive, the owner of a folder decides who can access it (could be anyone) and this access is not terminated when someone leaves the university.
Encrypting files means that they can only be opened by persons who have a unique key or password. If you want to share these passwords with others, make sure to use a different medium than the one you used to share the files, for instance SMS or WhatsApp.