Data Classification
This is IU’s lowest classification level with few or no restrictions for sharing.
What is Public data?
This law covers health data.
What is HIPAA (Health Insurance Portability and Accountability Act)?
This suspicious message tries to trick you into clicking links or sharing passwords—and no, the “prince” is not real.
What is a phishing email?
Your desktop and external hard drive as a location to store files.
What is an inappropriate location to save institutional data?
This is IU’s highest classification and includes Social Security numbers.
What is Critical Data.
The policies governing access to institutional data include university policy and these laws.
What are federal and state laws?
This Outlook feature should be used to report suspicious phishing emails to IU security teams.
What is the “Report Message” button?
This technology allows secure access to many IU resources from off campus.
What is a Virtual Private Network (VPN)?
Last names, addresses, and Social Security numbers are examples of this.
What is Personally Identifiable Information (PII)?
Protecting IU data begins with securing these two things.
What are your IU accounts and passphrase?
If you think you clicked a phishing link, IU says you should immediately do this to your IU credentials.
What is change your passphrase/password?
This IU service is recommended as an alternative remote connection option when using a personal device
What is IUanyWare?
Unencrypted email messages are not suitable for these data types.
What are Critical and Restricted data?
IU says it will NEVER request this credential through email.
What is your passphrase/password?
After entering credentials into a fake site, IU recommends taking this reporting step.
What is reporting the incident via the UISO/UIPO Intake Form?
VPN stands for this.
What is Virtual Private Network?
Before using institutional data for research, approval is required from this person or group.
Who is the appropriate Data Steward?
IU recommends using this security feature whenever available to verify your identity.
What is Multi-Factor Authentication (MFA/Duo)?
An employee falls for a phishing attempt—IU guidance says to do these two things immediately.
What are change your passphrase and report the incident?
The safest way to avoid security issues is to do this before clicking anything suspicious.
What is stop and think (or don’t click it!)?