Question
What types of data does MNSCU or Minnesota State consider Confidential, Protected Private or Public data?
Answer
Confidential data is inappropriate for public consumption. The data is so highly sensitive that the loss of confidentiality of the data would cause significant personal, institutional, or other harm.
Examples:
- Social Security Numbers
- Credit Card Numbers
- Financial Account Numbers, such as checking or investment account numbers
- Driver's License Numbers
- Health Insurance Policy ID Numbers
Protected Private Data is inappropriate for public consumption. The loss of confidentiality of protected data could cause significant personal, institutional, or other harm.
Examples:
- Student Records including grades, test scores, courses, class schedule, disciplinary, admissions, financial aid, and educational services received.
- Faculty/staff personnel files, performance evaluations, birth date
- Privileged attorney-client communications
- MnSCU internal memos and email, and non-public reports, budgets, plans, and financial information
- Non-public contracts
- Health Information, including Protected Health Information (PHI)
Public Data is not sensitive enough that the loss of confidentiality of the data would cause personal, institutional, or other harm. FERPA defines directory data as public.
Examples:
- Information authorized to be available on or through campus websites that do not require authentication
Campus maps
- Job postings
- Certain student or employee contact information not designated by the individual as "private"