CaTS | Information Technology

Quarterly Security Update: Storing Sensitive Data

Welcome to the Spring 2021 edition of the Quarterly Security Reminders email, brought to you by Wright State's Chief Information Security Officer. This quarter's newsletter will provide you with information about the proper ways to handle and store sensitive data.

With so many of us working remotely during the Coronavirus pandemic, handling and storing sensitive data, such as social security numbers, student information covered under FERPA, and credit card data, has been a challenge for many of us.  When we do not have easy access to WSU’s network storage (H, K, and R drives) it is very tempting to store data in a convenient location such as Microsoft’s OneDrive or a SharePoint site.  As a reminder that while OneDrive and SharePoint sites are secure, they have not been cleared for the storage of sensitive data.  The type of data mentioned above should only be stored on WSU’s network storage with the exception of credit card data.  Credit card data should never be stored on WSU storage, whether locally on your computer, thumb drive, or on network storage.

Please see the Risk Matrix below:

Risk Matrix Table

If you have any questions on the best way to handle sensitive data, contact the CaTS Help Desk at 937-775-4827, or email with your questions.
Reference material can be found at the following locations:

University Data Classification and Risk Matrix

HIPAA Regulations: Uses and Disclosures of Protected Health Information

Student Privacy and Release of Educational Records – FERPA