IT Security

OIT's Encryption Service helps to prevent the unauthorized exposure of confidential University information stored on any Windows-based laptop computer (a Mac encryption service will be available in July).  By University policy, if your mobile device stores any of the following information, that information must be stored on the devices hard drive in an encrypted manner using a product approved by the University's IT Security Officer:

• Information protected by general privacy laws about you or anyone else, also known as personally identifiable information or "PII".  PII includes Social Security Numbers, other national IDs, dates or places or birth, mothers' maiden names, credit card numbers, banking or investment account numbers, driver’s license numbers, health insurance policy IDs, passport and visa numbers, tax information, and any other identifying code that can be used for identity theft purposes. 
  
  NOTE - If a device (institutional OR personal) with University-entrusted PII is lost or stolen, the University must determine whose information is on the device and, for each individual, his or her permanent state/country of residence.  The privacy laws in each state/country of residence may require the University to notify the state's/country's affected residents and, in some cases, to notify other parties (e.g., the Attorney General, the press) and/or to provide credit protection.  However, most privacy laws waive or reduce these obligations, if it can be proven that the PII on the lost or stolen device is encrypted.
   
• Additional student information, e.g., student admission applications and supporting documents, student grading information, student dissertations, reader’s reports, student financial support documents, student health records, disciplinary information.
• Additional faculty/staff information:  e.g., University and employee ID numbers, CVs, resumes, employment applications, personnel files, performance reviews, benefits information, salary,  personal contact information.
• Alumni and donor contact information and non-public gift amounts
• Applications for employment (hired or not hired)
• Protected research
• Information covered by non-disclosure agreements
• Princeton internal memos and e-mail
• Completed Princeton forms, e.g., travel and expense documents
• Privileged attorney-client communications
• Digital copies of signatures
• Non-public University business documents, e.g., contracts, reports, budgets, plans, financial information, policies and procedure manuals
• Any data obtained through a University or departmental system that requires an ID and password for access

Encryption is a method of protecting data by converting it to a format that is unreadable by anyone except those with a special key. If sensitive or confidential information is exposed to unauthorized individuals, it is costly for both the University and for anyone whose identity may be stolen as a result of unauthorized access. Encryption plays a key role in our overall strategy for reducing this risk.

While using your computer, encryption software is as invisible as antivirus software. The technology has come a long way to ensure that you are not slowed down nor affected by its presence as you work.  The peace of mind that your data is protected is well worth the twenty minutes it takes to install it!

• Frequently asked questions
• Important information when traveling internationally
• The role of encryption in our IT security strategy