Knowing the classification of your data is integral to its security and UCSF's overall protection. Data classification helps determine how data should be protected in compliance with internal and external regulations and other contractual requirements. Failure to properly classify and protect your data can lead to:

• Loss or compromise of the electronic data’s confidentiality or integrity
• Negative financial impact
• Loss of critical UCSF operations
• Damage to UCSF’s reputation

Use the Data Classification Model to classify your data. This is in compliance with University of California Policy BFB-IS-3: Electronic Information Security.

Directions

1. Get a better understanding of Data Classification.
2. Visit UCSF's Data Classification policy for definitions and examples of each classification level and restricted data types.
   1. Take extra care if handling P3 and/or P4 data due to possible legal and reputational damages.
   2. A3 and A4 data must be backed up and recoverable.

Support

For further support with data classification, submit a ticket to IT Security.