Data security classification

Skip to main content
Next page Previous page


Data security classification

All information in the University has a classification level which indicates who should have access to the information and the appropriate security measures required.

  • Public (e.g. press releases, staff names and job titles, etc.) has no constraints on its publication and can be made freely available
  • Open (e.g. student names and email addresses) can be shared within the University but needs to be accessed through a University username and password
  • Confidential (e.g. home addresses) is available only to specified members of the University, with appropriate authorisation
  • Strictly Confidential (e.g. medical history) is restricted to a small authenticated number of members of the University
  • Secret (e.g. passwords, or anything subject to the Official Secrets Act) is known to a very small number of authenticated members of the University

Take a look at the UOB data classifications to see what other types of information are classed as restricted. This information is also available through the companion DataSafe App. The app is available for download and installation (for Android phones only). For more information about the app take a look at the DataSafe site.


What is the data security classification of the following types of information?


Staff or student home addresses - these are classed as confidential information so would only be available to individuals with appropriate permissions to view this information.

Staff email address - this is classed as public information so is available through public web pages.

Student email address - this is classed as open information so is available only through authenticated web pages.

Identity photograph - this is classed as confidential information so would only be available to individuals with appropriate permissions.

Check your answer

Further reading

Information security training quiz (University of Bristol)