Keeping Microsoft SharePoint or Teams sites set to “public” can unintentionally expose sensitive information to a wider audience than intended. When a site or its content is accessible without proper restrictions, it increases the risk of oversharing and unauthorized access, editing or deletion by individuals who should not have visibility or access into that information.
To protect organizational data and maintain compliance, you should always follow the principle of least privilege by configuring SharePoint or Teams sites as private by default, granting access only to those who truly need it. This ensures better control over who can view, edit, or share content.
Being mindful of SharePoint and Teams visibility settings is a simple but critical step in safeguarding company information. If you have any questions about how to do this, email privacy@wichita.edu or visit the ITS training site.
