Data Storage Locations
Secure Storage Locations Approved For University Data
Feb 14, 2024
Storing university data in a secure location is crucial to ensuring that malicious actors don’t obtain and misuse that data for their gain. Data can be classified based on the sensitivity of that data. Once you classify the data, ensure that you are taking the necessary precautions to protect it. The higher the data classification, the more protection the data needs. While protecting your data can make your head spin, we make it easy by providing a free solution to faculty, staff and students: Microsoft OneDrive. OneDrive not only protects university data, but it also has additional security controls that you can easily implement so only the necessary people have access to documents you share both inside and outside our organization.
OneDrive for Business has been configured for HIPAA compliance. You are still responsible for ensuring that your data is stored and shared securely, however. The university’s HIPAA policies and procedures can be found here.
The following measures can also help to ensure HIPAA compliance:
- Transfer of ownership: remove file access prior to users leaving the university and ensure that ownership has been transferred to another individual as appropriate.
- File Management: recover or permanently delete files from the recycle bin depending on your department’s specific retention requirements.
- Review access permissions on a set timeline (every 30 days, every month, etc.)
