Definition: Sensitive/non-Sensitive Data

This article defines both sensitive and non-sensitive data.

Sensitive Data

Sensitive data is information that has privacy protections in law, policy, or contract. Examples of privacy protections include, but is not limited to FERPA, medical information, and financial information.

More specifically, sensitive data is any data that aligns with the Private or Restricted definitions found in North Dakota University System Policy 1202.3 (Data Privacy Policy) and  North Dakota University System Procedure 1203.7 (Data Classification and IT Security Standard).

non-Sensitive Data

non-Sensitive data is information that does not have any protections in law, policy or contract. Specifically it is data defined as Public in policy 1202.3 and procedure 1203.7.

Common Data that is Sensitive

The following are some examples of sensitive data that is commonly encountered at NDSU. It is not an exhaustive list.

  1. Correspondence with a student that is not part of their employment on campus.
  2. Correspondence about a student that is not part of their employment on campus
  3. Content generated by students that is not required as part of employment.
  4. Date of birth.
  5. EMPLID (student/employee ID number)
  6. All types of information defined in NDCC 51-30-01.


Keywordssecurity sensitive data classification software   Doc ID141594
OwnerMarc W.GroupNDSU IT Knowledge Base
Created2024-09-04 16:43:59Updated2024-09-12 18:03:31
SitesNDSU IT Knowledge Base
Feedback  0   0