Confidential data handling - guidelines
An overview of best practice for handling information particularly when it is of a confidential nature.
when stored on central filestore is on secure servers maintained in secure physical environments.
should not be held on local disk storage (e.g. C: drive) of a desktop machine.
when stored on a laptop must be encrypted.
should not be stored or accessed on mobile phones or tablets unless appropriate security measures are in place.
if stored on a memory stick must be encrypted.
should not be stored or exchanged on portable media such as: CDs, DVDs, unless individual files are appropriately encrypted.
- when exchanged with external organisations (or individuals) must be encrypted.
Confidential data policy