High-risk files contain data in which loss or corruption might lead to legal or significant contractual liability, impair the ability of the University to perform its business or academic functions, significantly damage the image or reputation of the University, or otherwise result in legal, financial, or business loss. This data requires tight audit and access controls, and it should be available only on a need-to-know basis.
High-risk data should be encrypted when possible.
When you store or share high-risk files, first encrypt the files so that you don't disclose confidential information in ways that may harm someone else or you.
An encryption key is a common term for an "encryption" password. If you lose your encryption key, your data is gone! Be sure to store your password in a secure location.
Don't use your CNetID password as the encryption key for your files. If you need to move a high-risk file, encrypt it before it is moved. You must protect your high-risk files through encryption. You can email an encrypted document to the recipient. However, you should not transmit the retrieval key over the phone, by physical mail, or in person.
Once you've encrypted a file, choose a method to share the files. File share options are found in the File Sharing section of our service catalog.
Note: Some departments have established alternative file sharing systems for their staff. Check with your department for guidance.
To learn about the University's policies for computers that contain confidential and sensitive information, read our Handle and Protect Sensitive Information article.
If these tips do not meet your needs, contact your local support person or IT Services.
To learn about other tips for safe computing, visit the Get Secure website.