When Using Augusta University Data and Reporting Systems:
Do use a password-protected computer when accessing data and reporting systems, when
viewing institutional records, and when downloading reports.
Don't share or exchange individual passwords, for either personal computer(s) or system
Dolog out of and close the browser after each use of Augusta University data and reporting
Doonly access data in which you have received explicit written permissions from the
When Handling Sensitive Data:
Dokeep confidential and sensitive data only on password-protected and encrypted state-authorized
Dokeep any printed files containing PII in a locked location while unattended.
Don'tshare PII during public presentations, webinars, etc.
Do share dummy records during public presentations, webinars, etc.
When Reporting & Data Sharing:
Dopublish only aggregate data in groups no smaller than 5 in reports and only for valid
Dotake steps to avoid disclosure of PII in reports, such as aggregating, data suppression,
rounding, recoding, etc.
Don'tdownload, send, or publish screenshots, texts, or attachments that contain PII without
prior approval. If you receive an email/link containing such information, you should
delete the screenshot/text/attachments when forwarding or replying.
Don't transmit PII externally unless explicitly authorized in writing by the Data Trustee
and the Institutional Review Board when applicable (i.e., as part of a formal research
Do use Secure File Transfer Protocol (SFTP)when sharing PII with authorized individuals. Sharing within secured server folders
(i.e., BOX) is appropriate for Augusta University internal file transfer.
Doimmediately report any data breaches, suspected data breaches, or any other suspicious
activity related to data access to my supervisor and the AU Chief Information Security