skip to primary navigationskip to content
 

Guidelines on University data security classifications

The University defines four levels of data security. These guidelines help you to understand what they are, based on access requirements.

Level 3: Personal and strictly confidential information

Data of the type where:

  • there is a pressing requirement to limit who has access to it
  • there is need to define who is on the access list specifically
  • there is a need to ensure that the above list is complete (that is, it is known for certain there aren't other people who can see it by nature of their jobs – for example, HR or systems administrators).

Level 2: Confidential information

Data of the type where restricted access is required, but it is acceptable for systems administrators and super users to also have access to it.

Level 1: Cambridge only

Data of the type that is not quite 'public' or publicised data, perhaps because it includes some degree of personal data, but required for people to do their work in the University, for example:

  • a photoboard of personnel in a building, with their job titles
  • a telephone list of staff in a department
  • a lecture list, with lecturer names and rooms for students in a certain tripos.

Level 0: Unclassified or public information

All data that doesn't fall into one of the classifications above.


Ultimately, the data owner decides the data security classification

Once that decision is made, the appropriate storage can be determined, along with the access controls (that is: who has access and how granular that access is).

 


Further information

 Storage

 Storing and sharing personal data

UIS Service Status

Phone padded  Service status line: (01223) 463085
Website  Sign up for SMS/email status alerts
Website  Read major IT incident reports

UIS bITe-size bulletin


A regular newsletter aimed at the University's IT community, highlighting service and project news from UIS.

Sign up >  |  Back issues

RSS Feed Latest news

Microsoft Windows vulnerability announced: how to protect yourself

Mar 31, 2020

Microsoft has announced a serious vulnerability in all versions of Windows. Find out the steps you can take to protect your machine and your data.

Teaching software available to students

Mar 31, 2020

Most of the licensed teaching applications UIS provides on the MCS is for institutional use only, but student licences are available for some software.

View all news