• Students
  • Cyber Security Basics FAQ
  • Email Security
  • Identity Theft
  • Malware
  • Mobile Device Security
  • Password Security
  • Peer to Peer Sharing
  • Phishing
  • Physical Security
  • Sensitive Information Handling
• Faculty & Staff
• Home

External Links:

• MySafeCampus
• Colorado: Cyber Security Web Site
• Colorado Attorney General Identity Theft Resources
• Games

Sensitive Information Handling for Students

Q: What is considered sensitive information that the University protects?

A: Here are the items the University considers to be data that should be protected:

• Social Security Number
• Bear Number
• Race
• Ethnicity
• Nationality
• Gender
• HIPAA data
• Credit Card Information
• Grades

Q: Are there instances where this data does not need to be protected?

A: Yes.  Sensitive information must be protected if it can be used to identify an individual.  For example, a report that shows the ratios of various ethnicities of the students who attend UNC would not need to be protected since that data can’t be tied to any one student.  However, if there was a name listed with ethnicity tied to it, that would need to be protected.  Items like Social Security Number are always protected.

Q: What data is UNC allowed to publish?

A:  Unless the student has filled out a form with the Registrar’s Office stating that they do not want their information published, UNC is permitted to publish the following information about students:

• Name
• Address & Phone
• Email Address
• Enrollment Status
• Date of Birth
• Degrees Pursued
• Dates of Attendance
• Major
• Classification
• Degree Conferred and Dates Conferred  Participation in Recognized Sports
• Honors, Awards, Publications
• Physical Factors of Athletes

Q: What do I with printed documents containing sensitive information?

A: Lock them in a file cabinet or desk drawer when you still need them.  Also be sure to lock the door to your home.  When they are no longer needed, shred them or dispose of them in a shred bin.  Shred bins are located throughout campus.  They are a tall grey bin with a slot in the lid.  If the bin is overflowing, please contact Facilities Management at (970) 351-2446 or the Technical Support Center at 351-HELP.

Q: What if the information is stored electronically and I want to protect it?

A:  Encryption is the best method for storing sensitive information.  There are many free encryption tools on the internet available to use.  One that gets positive reviews is TrueCrypt.  Password protection is another option for protecting sensitive information.  Laptops can be encrypted with full disk protection.

Q: How would I email sensitive information?

A:  You can use encryption as mentioned above. 

Q: How would I dispose of electronically stored sensitive information?

A:  Sensitive information that is no longer needed that is contained on mobile phones, thumb drives, CDs, iPods, external disk drives, floppy disks, hard drives, etc. can be brought to the Carter Hall Data Center on the lower level  for proper certified destruction.