What is restricted data?
Many kinds of information require reasonable levels of protection. Inappropriate handling of restricted data could result in legal, ethical, or other constraints. Because of this, restricted information may not be accessed without specific authorization and only selective access may be granted. Examples include:
Last 4 digits of Social Security Numbers (SSN)
Individual student grades, academic transcript, class schedule, date of birth, or advising notes
CrimsonCard barcodes for students, staff, and faculty
Employee home addresses
Faculty/Staff Immunization records
Detailed floor plans showing gas, water, and sprinkler shut-offs, as well as the locations of hazardous materials
Usually, a restricted information element needs to be accompanied by an individual’s name in order to result in harm due to inappropriate handling, but not always.
Checkout IU's Data Sharing and Handling Tool which provides guidance on how to properly classify, store, and share the data you manage.
You may also check with the University Information Policy Office (UIPO) at firstname.lastname@example.org or 812-855-UIPO if you are unsure whether you need to apply special care and handling to the information elements and assets you use.