Infosec Home at The University of West Georgia

Log On

Step 2

Institutional Data Types

 2.1 Understanding the legal and regulatory landscape.

An important consideration when safeguarding the privacy and security of data held by an institution (and outside parties on it's behalf) is complying with applicable federal, state, and international laws and regulations related to the privacy and security of the data held by the institution, as well as any contractual protection obligations that may exist. Specific security controls are often legally prescribed for various data types, and these must be taken into consideration when developing a protection plan.

2.2 Classification System 

2.3 Schema

Using the schema, a classification is designed to institutional data to the extent possible for necessary. Assignment involves review and subsequent documentation of data types and their information sensitivity classification.

 

 << Step 1                               Step 3 >>