Classification Levels
P1: Public - information for public distribution.
Risk from exposure: None
Access: Not restricted
Examples:
All public data
Student directory data
P2: Internal - Unauthorized release of this data may have a limited effect on UCSB’s operations, assets or individuals.
Risk from exposure: Low
Access: Restricted to UCSB faculty, staff and students. User ID and password required.
Examples:
University financial information
Any university data not otherwise categorized
P3: Sensitive - Unauthorized release of this data may have a negative effect on UCSB’s operations, assets or individuals.
Risk from exposure: Medium
Access: Restricted to people with a business need to know. MFA required.
Examples:
Human Resource data
Student Educational data (FERPA)
Student Financial Aid data
Protected Research data
University Intellectual Property
University Contracts
Donor/Alumni data
P3/P4: Restricted - Unauthorized release of this data may have a serious effect on UCSB individuals.
Risk from exposure: Moderate
Access: Restricted to people entitled to know. MFA required.
Examples:
Student Ethnicity
Student sexual orientation data
Student eligibility/awarding of certain financial aid (PELL grants, CAL grants, etc.)
Student Health data
P4: Prohibited– Unauthorized release of this data may have a severe or catastrophic effect on UCSB’s operations, assets or individuals.
**This data is not allowed to be used in the Power BI Service.
Risk from exposure: High
Access: Tightly controlled. MFA required.
Examples:
Social Security Numbers
Credit Card numbers
Drivers License numbers
Bank Account numbers
Biometric data
Credentials for university systems (accounts/passwords)
0 Comments