Tuesday, November 3, 2009 - Almanac Vol. 56, No. 10
You Can't Lose Data That You Don't Have
A few months ago, at a peer institution, a laptop containing names and Social Security numbers of 45,000 students, faculty and staff was stolen. This was not an isolated incident. More and more data breaches are occurring as a result of lost or stolen laptops. Data is also at risk when it is stored on an unsecured desktop.
The best way to avoid risks to sensitive data, to individuals, and to Penn is simply not to download sensitive data unless you absolutely must. Your Local Support Provider (LSP) can advise you on how you can instead store and access sensitive documents on properly secured departmental file servers. They should be used whenever possible to reduce the number of points of possible data vulnerability. If you must download sensitive data, contact your LSP for assistance in encrypting the file, securing your machine, and securely deleting the information once it is no longer necessary.