WMU Sensitive Data Guide

The WMU Sensitive Data Guide shows the various WMU-managed data storage or application solutions that could be used to store data elements as outlined in the University's Data Classification Policy. These tables shall be used to determine the best possible and most secure solution when storing classified university data. Please note that many information systems and applications exist throughout the University that are not listed here that have been approved for the various classifications of university data through the Technology Compliance Review process.

Legend

CodePermissionInstructions
YPermittedReview the University Data Classification Policy.
NNot PermittedTake no action.
HCEPermitted for HIPAA-covered entities

Review the University Data Classification Policy.

Review University HIPAA policy.


WMU-Managed Applications and Data Storage

Application/data storageHIPAA/PHIRestrictedConfidentialInternal Public
Adobe Creative Cloud (WMU)NNNYY
Banner Student Information System (SIS)NYYYY
CognosNYYYY
Departmental file sharesHCEYYYY
ElearningNNYYY
Google Workspace (WMU)NNNYY
ImageNow/Perceptive ContentNYYYY
KronosNNYYY

Microsoft 365 (W-Exchange) including Outlook, OneDrive, Teams, etc

Desktop applications with full disk encryption

Email with point-to-point encryption for email messages

HCEYYYY
PeopleSoftNYYYY
Individually owned computers, devices, and cloud storageNNNNN
Qualtrics (WMU)HCENNYY
Salesforce (WMU instances)NYYYY
Webex (WMU)HCENNYY
Websites (University CMS)NNNYY
Websites (Externally hosted)NNNYY
University Owned Devices (I.e. Phone, laptop, flash drive, hard drive)
*with full disk encryption
HCENNYY

Supporting Documentation