WSU Restricted information is the category of data that contains some of the most sensitive personal information at WSU. It is highly sensitive information, maintained, collected or recorded by WSU that is intended for limited, specific use by a workgroup, department, group of individuals or third party with a legitimate need to use or access the data. The difference between Private and Restricted data is that explicit authorization by the designated data owner is required for access to WSU Restricted data due to legal, contractual, privacy or other related constraints.
Examples of Restricted data include sensitive personal identifiable information, such as social security or driver’s license numbers, credit card numbers, identifiable genetic or biometric information, medical information, and Federal Tax Information. See the WSU policy 19.20 / Data Sensitivity Classification for more examples and specific information about all of the types of WSU Restricted data.
Privacy for individuals must be at the forefront of our mind when handling WSU Restricted information, as unauthorized release of this information often times could be harmful to an individual if it is mismanaged. Applying the appropriate labels and following the privacy principles listed on the WSU Privacy SharePoint Site can guide you in proper management. Check in tomorrow for tips on how you can label this Restricted information to ensure the appropriate management of it. For more information about data labeling and how to apply labels, visit the Data Labeling Guide on the Information Security website.