Location: Bowdoin / IT / FYI / Information Security / Security For / Data Classification Table

Information Security

Get Help

Submit Help Ticket 24/7

Live Chat

Faculty/Staff
x3030 or 207-725-3030
Students
x5050 or 207-721-5050

Data Classification Table


 Restricted Data
(most sensitive)		 Sensitive Data
(moderate sensitivity)		 Public Data
(low sensitivity)
Legal Requirements Protection of the data is required by law Contractual obligation to protect the data Protection of the data is at  the discretion of the data owner
Reputation Risk High Medium Low
Other Institutional Risks Provides access to resources, physical or virtual Smaller subsets of data within a department General college information
Access Only individuals designated with approved access Bowdoin employees and non-employees with a business need to know Bowdoin affiliates and general public with a need to know
Examples See below for specific examples.
  • Information resources with access to restricted data
  • Research details or results that are not restricted data
  • Library transactions
  • Financial transaction that do not include restricted data (i.e. telephone billing)
  • Information covered by non-disclosure or confidentiality agreements
  • Campus maps
  • General directory information
  • Email Address


HIPPA - Protected Health Information

  • Patient names
  • Street address, city, country, zip
  • Telephone numbers
  • E-mail, URLs, IP numbers
  • Social Security Numbers
  • Health plan beneficiary numbers
  • Account and Medial Record Numbers
  • Full face images
  • Payment Guarantor's information

FERPA - Student Records

  • Grades / Transcripts
  • Class lists or enrollment information
  • Student Financial Services information
  • Athletics or department recruiting information
  • Credit Card Numbers
  • Bank Account Numbers
  • Wire Transfer information
  • Payment history
  • Financial Aid / Grant information / Loans
  • Student Tuition Bills

The following data may ordinarily be revealed by the college without consent unless the student designates otherwise:

  • Name
  • Date of birth
  • Place of birth
  • Directory address and phone number
  • E-mail
  • Mailing address
  • Campus address
  • Residence assignment
  • Bowdoin degree(s) awarded and date(s)
  • Major(s), minor(s)

Research Information

  • Private Funding Information
  • Human Subject Information

Employee Information

  • Performance Reviews
  • Worker's compensation or disability claims
  • Social Security Number
  • Salary or payroll information
  • Bank account number
  • Date of birth
  • Home address or personal contact information
  • Driver's license number
  • Benefit information

Personally Identifiable Information (PII)

  • Name in association with:
    • Social Security Number
    • Credit Card Number
    • Bank Account Number
    • Drivers License Number
    • Password or PIN that would reveal other PII

Business Data

  • Credit card numbers with or without expiration dates
  • Bank or brokerage account numbers
  • Social Security or other Taxpayer ID numbers
  • Privileged contract information
  • Confidential legal information
  • Detailed annual budget information
  • College investment information
  • Non-anonymous course evaluations
  • Annual Conflict of Interest Disclosures

Donor Information

  • Name
  • Credit card number
  • Bank account number
  • Social Security Number
  • Amount/what donated
  • Employment information
  • Family information
Document author:
rdenton
Last modified:
Sep 29, 2009