What is information classification?

Bethany Reid
Wednesday 12 February 2020

Information is an asset, but not all information has the same value for the University. Not all information needs to be protected as strongly as others when storing and sending it.

The Information Classification policy tells how we categorise data at the University. Information can be either:

  • Strictly confidential
  • Confidential
  • Internal
  • Public

A new resource for the University

As we’ve introduced new storage options at the University over the past few years, Teams and OneDrive, we thought it best to refresh our understanding of these different classifications and where this data should be stored.

Some organisations have produced posters, flowcharts and implementation guides, so we’ve produced this infographic to get us started. It illustrates a few examples of each classification, the storage options, and the features of each.

Key messages to take from the graphic

  • Staff and students aren’t permitted to keep internal, confidential or strictly confidential information outside of Microsoft 365 or the central file store. This includes Dropbox and other cloud solutions.
  • If you use Microsoft 365, ensure your account isn’t being synced to a personal device. This may risk data getting into the wrong hands if your device is shared or you lose it.
  • Since you can access Microsoft 365 files from anywhere, use it to collaborate and co-author documents.

Download PDF

Suggestions for guidance

This was a response to queries about whether staff could store sensitive information in the cloud. Do you have any other similar queries that you’d like us to address? If so, please comment.

Share this story

Subscribe to the IT Services blog

Enter your email address to subscribe to this blog to receive notifications of new posts.