Restricted Data

What is restricted data?

Many kinds of information require reasonable levels of protection. Inappropriate handling of restricted data could result in legal, ethical, or other constraints. Because of this, restricted information may not be accessed without specific authorization and only selective access may be granted.

Any identifiable data including contact information (name, address, phone, IP address) and bio-demographics about students, employees is assigned restricted data classification. Examples include:

Last 4 digits of Social Security Numbers (SSN)
Individual student grades, academic transcript, class schedule, date of birth, or advising notes
CrimsonCard barcodes for students, staff, and faculty
Employee home addresses
Faculty/Staff Immunization records
Detailed floor plans showing gas, water, and sprinkler shut-offs, as well as the locations of hazardous materials

NOTE: Sharing non-public institutional data (critical, restricted, and university internal data classifications) with any third party (including Generative AI public tools) is a violation of DM-01: Management of Institutional Data and DM-02: Disclosing Institutional Information to Third Parties and can result in sanctions by the university.

Checkout IU's Data Sharing and Handling Tool which provides guidance on how to properly classify, store, and share the data you manage.

You may also check with the University Information Policy Office (UIPO) at uipo@iu.edu or 812-855-UIPO if you are unsure whether you need to apply special care and handling to the information elements and assets you use.

IU Data Management

Restricted Data

What is restricted data?

Site Navigation

Contact US

University Data
Management Council

Restricted Data

What is restricted data?

Site Navigation

Contact US

University DataManagement Council

University Data
Management Council