UAM banner
UAM Home
IT Home
Quick Links
Getting Connected - Wired
Getting Connected - Wireless
Getting Connected - Wireless for Guest
Register Your Game Console
Equipment Quotes
Forms
Online Support Form
Online Tutorials
Passwords
Security & Viruses
Software / Downloads
Virus Info Feed
Information for:
Faculty/Staff
Students
Information about:
Bandwidth Usage
Barracuda
Copyright
FAQ's
How To's
Microsoft Campus Agreement
Sensitive Data
WebCT
Policies & Procedures:
Computer Usage Policy
Copyright Resources:
U.S. Copyright Act
U.S. Copyright Office
Copyright Clearance Center
Reporting:
Copyright Infringements
Technical Problems
Website Problems
Suggested Readings:
Computer Security
Virus Information
Linux Security

Sensitive Data

Privacy-related legislation grew out of a concern over the potential misuse of personal information collected and maintained on corporate networks, which store, manipulate, and transmit the data for a variety of reasons. Do not allow the mishandling of protected information—protect that information with adequate safeguards.

The Family Educational Rights and Privacy Act (FERPA), which addresses education information, and the Gramm-Leach-Bliley Act (GLBA), which addresses financial information, to name a couple, affects the UAM community in many ways.

Compliance is nothing to fool around with, and it's imperative that the UAM community understand its responsibilities for safeguarding protected data. Protected data is any information that could be use to identify an individual. Information protected by legislation can include:

  • Salary and fringe benefits (except for federal employees)
  • Terms of employment (including performance and disciplinary records)
  • Academic and educational history
  • Criminal investigation and arrest history
  • Employment history (including general or security clearance information)
  • Biographical history
  • Social Security information
  • Identification codes
  • Personnel profile (including home address and phone number)
  • Medical history

UAM's network obviously contains and/or processes protected sensitive information. Unauthorized disclosure of such sensitive information could adversely impact UAM with both civil and criminal liabilities. For protection of faculty, staff and students, it's vital that you implement some extra precautions.

Administrator responsibilities

Administrators have the responsibility of securing the network, storage, and use of personal data subject to such legislation. Failure to follow specific requirements can result in fines up to $5,000 per violation, as well as misdemeanor charges. Appropriate security safeguards will help protect data from the following:

  • Inappropriate disclosure
  • Improper use
  • Access by unauthorized or unapproved users
  • Data tampering

But don't forget that security measures, no matter how solid, are only as good as the educated employee who wants to do the right thing.

Employee responsibilities

An organization's users are potentially the weakest link in security efforts. You've heard it before, but it's worth repeating: Educate your users.

To better protect sensitive data, train all users to do the following:

  • Label all media (e.g., disks and documents) containing sensitive information.
  • Securely store sensitive information.
  • Immediately notify supervisors of any security breach.
  • Do not send unencrypted sensitive information via e-mail.
  • Log off or use a screen saver with a password when leaving workstations unattended.
  • Store data on network drives instead of workstations.
  • Do not place sensitive data on unsecured websites

Guidelines for Sensitive Data

Accreditation Information | Contact Us | Disclaimer | Employment | Master Plan | Mission Statement | Strategic Plan 

© 2009 University of Arkansas at Monticello
Send inquiries regarding the operation of this Web site to Web Publisher.