Sensitive Information Handling for Students
Q: What is considered sensitive information that the University protects?
A: Here are the items the University considers to be data that should be protected:
- Social Security Number
- Bear Number
- HIPAA data
- Credit Card Information
Q: Are there instances where this data does not need to be protected?
A: Yes. Sensitive information must be protected if it can be used to identify an individual. For example, a report that shows the ratios of various ethnicities of the students who attend UNC would not need to be protected since that data can’t be tied to any one student. However, if there was a name listed with ethnicity tied to it, that would need to be protected. Items like Social Security Number are always protected.
Q: What data is UNC allowed to publish?
A: Unless the student has filled out a form with the Registrar’s Office stating that they do not want their information published, UNC is permitted to publish the following information about students:
- Address & Phone
- Email Address
- Enrollment Status
- Date of Birth
- Degrees Pursued
- Dates of Attendance
- Degree Conferred and Dates Conferred Participation in Recognized Sports
- Honors, Awards, Publications
- Physical Factors of Athletes
Q: What do I with printed documents containing sensitive information?
A: Lock them in a file cabinet or desk drawer when you still need them. Also be sure to lock the door to your home. When they are no longer needed, shred them or dispose of them in a shred bin. Shred bins are located throughout campus. They are a tall grey bin with a slot in the lid. If the bin is overflowing, please contact Facilities Management at (970) 351-2446 or the Technical Support Center at 351-HELP.
Q: How would I store sensitive information electronically?
A: Use SkyDrive Pro! You can find SkyDrive linked to the top of your BearMail email site. SkyDrive Pro stores files securely and can be accessed from any computer with internet access. Think of it as a secure thumb drive that you donít have to carry with you. Instead, itís on the internet.
Q: How would I email sensitive information?
A: From SkyDrive Pro, you can upload files or create a brand new one from within SkyDrive. Once itís attached to your SkyDrive you can share it with people both on and off campus electronically.
Q: How would I dispose of electronically stored sensitive information?
A: Sensitive information that is no longer needed that is contained on mobile phones, thumb drives, CDs, iPods, external disk drives, floppy disks, hard drives, etc. can be brought to the Carter Hall Data Center on the lower level for proper certified destruction.