Skip to main content

USU Encryption Requirements

In order to ensure protection of sensitive data, such as social security numbers, birth date, institutional confidential information, FERPA, etc and to comply with USU's Computer Management Policy #551, laptops and storage devices that access or store sensitive data need to be encrypted. Read below to learn more about how these changes affect you.

What is Sensitive Data?

Sensitive data is a term used to describe both Restricted/Private Sensitive Information (PSI) and Confidential/Critical Institutional Data (CID). Please reference the Sensitive Data Elements documents for a detailed list of these data elements. 

Why Encryption?

The Computer Management Procedures under University Computer Management Policy #551 states any university computer used to display, process, store or transmit sensitive data must be managed according to the appropriate "High Security Setup." A requirement of the "High Security Setup" is to encrypt the hard drive containing sensitive data. Additionally in acquiring Cyber Security Insurance, USU employees must also encrypt personal laptops that access/store sensitive data.
What devices need to be encrypted?

How do I encrypt my device? 

Hard drive encryption should be completed by a qualified IT Support Personnel, employed by the department or in Office of Information Technology, in accordance to the Information Security Policy #558.  Mishandled encryption could result in the loss of critical data and information. Reach out to your IT support person for assistance with this.


Resources for IT Support Personnel 

Knowledge Base articles on how to encrypt a hard drive for Windows, Linux, and Macintosh have been created. Please remember to do the following:
1. Practice on a test devices
2. Backup data before encrypting