New approved Cloud policy

UofG's Information Governance Group (formed from Strategy & Planning and Information Services staff) recently approved a new Cloud policy which contains important information for all staff.

This is required as part of ensuring that University information is secure, and to meet Data Protection legislation.

The policy is available from under Information Governance.

Key points

  • Personal and other confidential data must only be stored on University storage, or cloud providers that meet the requirements of this policy.
  • All cloud services on the IT Services website meet the policy requirements
  • Do not use other cloud providers for personal and confidential data (e.g. Dropbox ). Use Office365 OneDrive for Business instead.
  • Where there is a specific need to sign up to, or procure any other cloud service, the requirements of the policy must be met in full, including that risks to security and privacy are considered and addressed, relevant University areas must be consulted, and a formal contract is put in place with the provider organisation.

Need advice?

For advice or help contact DP/FoI Office ( or Information Security Team (

To find out more about using Office365 to collaborate visit Office 365

Watch out for more articles on this topic coming soon.

First published: 5 September 2017