Confidential data handling - guidelines

Confidential data handling - guidelines

An overview of best practice for handling information particularly when it is of a confidential nature.

Confidential data

  • when stored on central filestore is on secure servers maintained in secure physical environments.
  • should not be held on local disk storage (e.g. C: drive) of a desktop machine.
  • when stored on a laptop must be encrypted.
  • should not be stored or accessed on mobile phones or tablets unless appropriate security measures are in place.
  • if stored on a memory stick must be encrypted.
  • should not be stored or exchanged on portable media such as: CDs, DVDs, unless individual files are appropriately encrypted.
  • when exchanged with external organisations (or individuals) must be encrypted.

Detailed guidelines

Online training

Confidential data policy