Data Security

In this section find security requirements and best practices for identifying, classifying, using, storing and disposing of Duke data. Duke Health and Duke University follow the same Data Security Policy and Data Classification Standard that drive data security requirements across the enterprise.

Also, see the Data Security Guide to learn more about data security at Duke.

Security Offices' Policies, Procedures, and Standards

Data Security Policy

Duke University

Applicable Policies, Procedures, and Standards:

Duke University Standard: Encryption

Data Loss Prevention (DLP) Tool Access and Use Policy

Data Loss Prevention (DLP) Tool Usage Procedure

Social Security Number Usage Policy

Secure Collection of Social Security Numbers

Media Control and Disposal

Using Qualtrics to Collect Sensitive Data

Using StrongFiles for Collecting Sensitive Data

Data Feed Request and Approval Process

Sensitive Research Data Review Procedure

Duke Health

To find Duke Health (Am I Duke Health?) security policies and standards:

Go to Policy Tech at dukeuniversity.policytech.com. Select Duke Health enterprise and see a grouping of information security policies and standards.

Security Offices' Position Statements

Use of Non-Duke Email Accounts