Sensitive Data Guide

Sensitivity labels are used to classify and protect data based on its sensitivity and importance. You can apply labels to files and documents to control access, ensure data privacy, and protect against unauthorized disclosure.

Sensitivity labels

Public Data 

Public data is information that is intended for the public and has no restrictions on its use or disclosure. This information can be provided with no impact on Lindenwood University. Examples of public data may include the university website, class offerings, directories, and university news or press releases. 

Private Data 

Private data is information that is intended for use by Lindenwood University and is not openly shared with the public. Examples include internal memos and/or emails, departmental policies and procedures, employee ID numbers, and personal cell phone numbers. 

Confidential Data

Confidential data is information that is either confidential business or personal information that requires higher levels of protection.  This includes student information that is not designated directory information, and personally identifiable information (PII), such as name, date of birth, and address.  This information could lead to identity theft. This Label is encrypted.

Regulations often associated with Level 3 data include, but are not limited to:

Family Educational Rights & Privacy Act (FERPA) 
Graham-Leach- Bliley Act (GLBA)

Restricted Data 

Restricted Data is highly sensitive/restricted and requires the highest level of protection.  It is intended for limited use and may not be disclosed except to those with authorization to view or use data. This includes medical, fiscal, and other student records.  Disclosure of this data may result in serious adverse impacts on Lindenwood University. This label is encrypted, and offline access is not permitted. 

Regulations often associated with Level 4 data include, but are not limited to:

Health Insurance Portability and Accountability Act (HIPAA)
Payment Card Industry Data Security Standards (PCI DSS) 
Social Security Numbers (SSN) 
Protected Health Information (PHI)

How to apply sensitivity labels (Outlook)

Sensitivity Labels FAQ

What are Sensitivity Labels?

Sensitivity Labels are a system that enables you to classify data based on its sensitivity level, making it easier to manage and secure your data.

How do Sensitivity Labels work?

Sensitivity Labels allow you to label data based on its sensitivity level, from public data to restricted data. You can then use these labels to control access to the data and encrypt sensitive information.

What is the purpose of Sensitivity Labels?

The purpose of Sensitivity Labels is to help you manage and secure university data. By classifying data based on its sensitivity level, you can ensure that it is only accessible by the right people and stored in a secure location.

What types of data should be classified using Sensitivity Labels?

Any data that contains sensitive or confidential information should be classified using Sensitivity Labels. This may include University data, financial records, confidential business information, and more.

What if I need to send encrypted data outside the University?

You can fill out this External Email Encryption Form and our Information Technology Security team will work with you to keep university information safe.

How does Sensitivity Labels help with compliance?

Sensitivity Labels can help you meet compliance requirements by ensuring that your data is properly classified and protected. You can use Sensitivity Labels to enforce policies that meet regulatory requirements, such as GLBA, FERPA, and more.