skip to content

IT Help and Support

University Information Services
 

The University defines four levels for classifying data based on the impact that compromise of this data would have. The following explanations are in response to queries based on personal data. For fuller information see the Information Classification Tables link below.

Level 3: High or Very High Impact

Data of the type where:

  • there is a pressing requirement to limit who has access to it
  • there is need to define who is on the access list specifically
  • there is a need to ensure that the above list is complete (that is, it is known for certain there aren't other people who can see it by nature of their jobs – for example, HR or systems administrators).
     

Level 2: Medium Impact

Data of the type where restricted access is required, but it is acceptable for systems administrators and super users to also have access to it.
 

Level 1: Low Impact

Data of the type that is not quite 'public' or publicised data, perhaps because it includes some degree of personal data, but required for people to do their work in the University, for example:

  • a photoboard of personnel in a building, with their job titles
  • a telephone list of staff in a department
  • a lecture list, with lecturer names and rooms for students in a certain tripos.
     

Level 0: Negligible Impact

All data that doesn't fall into one of the classifications above.


Ultimately, the data owner decides the data security classification

Once that decision is made, the appropriate storage can be determined, along with the access controls (that is: who has access and how granular that access is).

 


Further information

 Information Security Risk Assessment

 Information Classification Tables

Reducing the Information Security Risk

 Storage

 Storing and sharing personal data

Phone padded  Service status line: (01223 7)67999
Website  Sign up for SMS/email status alerts
Website  Read major IT incident reports

UIS bITe-size bulletin

A regular newsletter aimed at the University's IT community, highlighting service and project news from UIS.

Sign up >

Latest news

Your University GoogleDrive: 20GB quota limit from December 2022

19 January 2022

Google is replacing its G Suite for Education model licensing model in October 2022. As a result, there will be a new limit of 20GB on personal GoogleDrive spaces provided with G Suite@Cambridge accounts. If your GoogleDrive usage exceeds 20GB after 1 December 2022, your University account GoogleDrive will become read-only until your usage is brought below 20GB.

Moodle offline for upgrade during 06:00–12:00 on Tuesday 11 January

10 January 2022

Moodle will be unavailable from 06:00 to 12:00 on Tuesday 11 January while we upgrade it to version 3.9. During the upgrade, you won’t be able to view or upload sessions on Panopto because access is managed via your Moodle login. Assessment Moodle, ICE Moodle and Clinical School Moodle users will be unaffected. An outline...

HEAT authentication method changing to Azure on 13 January

7 January 2022

We're changing the authentication method for the IT service management system, HEAT, to Microsoft Azure on Thursday 13 January 2022. What is changing? You should continue to use the same URL for accessing HEAT: https://uniofcam.saasiteu.com. However, the 'Sign in' screen you'll be directed to will look slightly different,...