This article describes data security classifications and university risk impact. It is a living document driven by the data strategy implementation across the University.
Unauthorized disclosure, alteration, or destruction could cause a HIGH level of risk to Grand Valley or its affiliates. Serious adverse effects on a university's reputation, resources, services, or individuals.
Data protected by state or federal privacy regulations.
Data protected by confidentiality agreements.
Unauthorized disclosure, alteration, or destruction of that data could result in a moderate level of risk to the University or its affiliates. Moderate adverse effects on the university's reputation, resources, services, or individuals.
By default, all Institutional Data that is not explicitly classified as Restricted or Public data should be treated as Private data.
Unauthorized disclosure, alteration, or destruction could cause a low level or no risk to Grand Valley or its affiliates.
A level of control is required