Data Classification
Use these criteria to determine which data classification is appropriate for a particular information or infrastructure system. A positive response to the highest category in any row is sufficient to place that system into that classification. E-mail should be classified by the data or information contained therein. For example, e-mails that relate to specifically identified students must be kept as confidential education records. Each user should protect their e-mails as required under PS-121-ST-3 (Applications Acceptable Use) and PS-124 (Data Management).
Note: If you are creating a new information system that will store or handle Confidential Data, you must inform the IT Security & Policy Office.
|
|
|
|
---|---|---|---|
Description |
|
|
|
Access | Only those individuals designated with approved access, signed non-disclosure agreements, and/or a need-to-know | LSU employees and non-employees who have a business need-to-know | LSU employees, non-employees, LSU affiliates and/or general public with a need-to-know |
Examples |
|
|
|