The WMU Sensitive Data Guide shows the various WMU supported data storage or application solutions that could be used to store data elements as outlined in the University's Data Classification Policy. These tables shall be used to determine the best possible and most secure solution when storing classified university data. Note that "Permitted with Consultation" indicates that the solution requires that the IT Security and Privacy Officer should be consulted in order that the appropriate security measures and procedures are used when considering that storage solution.
Legend
| Code | Permission | Instructions |
|---|---|---|
|
P |
Permitted |
Review the University Data Classification Policy. |
|
C |
Permission contingent upon consultation with IT Security and Privacy Officer. |
Submit an Information and Data Security Inquiry. Review the University Data Classification Policy. |
|
H |
Permission contingent upon consultation with University HIPPA Compliance Officer and IT HIPAA Security Officer. |
Consult with the University HIPPA Compliance Officer. Submit a HIPAA and Electronic PHI Security Inquiry. Review the University Data Classification Policy. Review University HIPAA policy. |
|
N |
Not Permitted |
Take no action. |
Google G-Suite for Education (WMU)
| WMU Supported Data Storage or Application | HIPAA/PHI | Restricted | Confidential | Internal | Public |
|---|---|---|---|---|---|
| WMU Google Core Apps Drive, Photos, Hangouts, Sites |
N | N | C | P | P |
|
WMU Google Non-Core Apps |
N | N | N | P | P |
W-Exchange/Microsoft 365
| WMU Supported Data Storage or Application | HIPAA/PHI | Restricted | Confidential | Internal | Public |
|---|---|---|---|---|---|
| OneDrive for Business | H | C | P | P | P |
| Outlook Web Client (email, calendar, contacts) *Email with point-to-point encryption for email messages |
H | C | P | P | P |
| Outlook Desktop Client* (email, calendar, contacts) *with full disk encryption *Email with point-to-point encryption for email messages |
H | C | P | P | P |
| Sites (SharePoint) | N | N | P | P | P |
| Groups, Teams & Planner | N | N | P | P | P |
Other WMU Supported Data Storage and Applications
| WMU Supported Data Storage or Application | HIPAA/PHI | Restricted | Confidential | Internal | Public |
|---|---|---|---|---|---|
| Apple Cloud Storage | N | N | N | P | P |
| Banner | N | P | P | P | P |
| Cognos | N | P | P | P | P |
| Departmental file server *Approval by Dept IT Director |
N | C | P | P | P |
| Adobe Creative Cloud storage | N | C | C | P | P |
| Elearning | N | C | P | P | P |
| Homepages | N | N | N | P | P |
| ImageNow | N | P | P | P | P |
| Qualtrics (WMU) | H | N | C | P | P |
| University Web Sites (CMS) | N | N | N | P | P |
| Externally hosted web sites | N | N | N | P | P |
| University Owned Devices (I.e. Phone, laptop, flash drive, hard drive) *with permission & full disk encryption |
H | C | C | P | P |
| PeopleSoft | N | P | P | P | P |
| Personally Owned Devices (i.e. phone, laptop, flash drive, hard drive) | N | N | N | P | P |
| Cloud Storage Included with Software *Permitted with Technology Compliance Review consultation & approval |
H | C | C | P | P |