By applying consistent labels, WSU can gain insight into what type of data we possess, how it is used and where it is stored. This will help stakeholders make decisions about data handling, access controls and data lifecycle management.
Labeling helps identify and prioritize sensitive information for protection and access control. Limiting unauthorized access and assisting with data loss prevention.
Document labeling supports compliance efforts by ensuring that sensitive information is handled in accordance with applicable laws, regulations and standards such as FERPA, HIPAA, ITAR, PCI-DSS among others.
WSU Public Data generally has a very low sensitivity, but it still warrants protection since the integrity and protection of the data can be important. WSU Public Data is explicitly or implicitly approved for distribution to the public without restriction. Examples of WSU Public Data include, but are not limited to, the following:
WSU Private Data is information that has low to moderate sensitivity and that is intended for internal University business use only, with access restricted to a specific workgroup, department, group of individuals, or affiliates with a legitimate need to use or access the information. Unauthorized disclosure could adversely impact the University, Controlled Affiliate Organizations, third parties, or individuals. Examples of WSU Private Data include, but are not limited to, the following:
WSU Private data that should only be sent internal to the organization to WSU personnel. (Cannot be shared externally)
WSU Restricted Data is highly sensitive information maintained, collected, or recorded by WSU that is intended for limited, specific use by a workgroup, department, group of individuals, or third party (typically pursuant to a contract or agreement) with a legitimate need to use or access the data. Explicit authorization by the designated Data Owner is required for access to WSU Restricted Data because of legal, contractual, privacy, or other constraints. Unauthorized disclosure could have a serious adverse impact on the business or research functions of the University, affiliates, or external parties and violate the personal privacy of individuals, federal or state laws and regulations, or contractual obligations of the University. Examples of WSU Restricted Data include, but are not limited to, the following:
There are two classes of SPII. The first class includes SPII that is sensitive regardless of whether any other identifier is paired with it ("Stand-Alone"). The second class of SPII becomes sensitive when it is combined with other types of Personally Identifiable Information (PII). The following are examples of each type of SPII:
WSU Restricted information that should only be sent internal to the organization to WSU personnel. (Cannot be shared externally)
Proprietary Data is either (1) University Data provided to a third party or (2) third-party data created, received, and/or maintained by the University on behalf of a third party such as an individual, corporation, or government agency. Proprietary Data will vary depending on contractual agreements and/or relevant laws or regulations.
WSU Proprietary information that should only be sent internal to the organization to WSU personnel. (Cannot be shared externally)
Options to apply a sensitivity label to a document:

2.Selecting the ‘Select a Label’ option at the top of the document, and then choosing a label. This will also appear when a document is saved without a label applied.


Options to apply a sensitivity label to an email:

2.Using the ‘Select a Label’ option next to the subject line

3. Clicking ‘Send’ on an email that does not contain a label

Encrypting emails is a good step in ensuring that WSU data is not viewed or accessed by unintended parties.
To encrypt an email message, select any WSU Restricted label or any label with a padlock symbol over the shield icon.

Users who receive an encrypted email outside of the organization will be prompted to authenticate with their own email account or receive a one-time passcode in order to authenticate. This link will only be accessible for 30 days from the time the email was sent.

Additional labels exist for those users and departments that have specific compliance needs.
If you handle the type of information highlighted below, please send an email to AskInfoSec@Wichita.edu so that we may supply you with more descriptive labels.

Email: askinfosec@wichita.edu
Phone: 316-978-4732
Email: privacy@wichita.edu
Phone: 316-978-4447