Storage Restrictions by Data Type

The table below displays where types of data can be stored. For data type definitions and ownership, jump to the Data Types table.

Data Types and Storage Options

Data Type Allowed?
Nevada Box Wolf Cloud One Drive Share Point

Email - Internal

Email - External

Fax

Slack
or
Microsoft Teams

Form Stack iCloud

Directory Information

Yes Yes Yes Yes Yes Yes Yes Yes Yes No

Account Identification Information

No No No No No No No No No No

University Financial Information

Yes Yes Yes Yes Yes Yes Yes Yes Yes No

Credit Card Information

No No No No No No Yes No No No

Personally Identifiable Information (PII) - Unregulated

Yes Yes Yes Yes Yes Yes Yes Yes [*] No

Personally Identifiable Information (PII) - Regulated

No No No No No [!] Yes No No No

FERPA

Yes Yes Yes Yes Yes [!] Yes No [*] No

Protect Health Information (PHI/HIPAA)

Please contact OIT Support for the proper storage and transmission of this type of data.

Export Controlled Data

Please contact the Office of Sponsored Projects for the proper storage and transmission of this type of data.

Personal Files

All personal files must be transmitted and stored only via personal means.

 

[!] Only if both parties are lawfully authorized to the data, and it is encrypted during transfer.

[*] Only if NetID authentication is enforced and encryption is enabled. 

Data Types

Data Type Ownership and Definitions/Examples

Data Type Data Owner Definition/Examples
Directory Information Human Resources Publicly accessible employee directory information.
Account Identification Information End User Private information used to access an account such as passwords, personal identification numbers (PINs), and NSHE ID's
University Financial Information University Controller UNR account numbers, purchase order numbers and worktag numbers
Credit Card Information University Controller Credit card numbers, PINs, CCVs
Personally Identifiable Information (PII) - Unregulated Human Resource / Student Services Unregulated data such as full name and address
Personally Identifiable Information (PII) - Regulated Human Resource / Student Services "Personal information" means a natural person’s first name or first initial and last name in combination with any one or more of the following data elements, when the name and data elements are not encrypted:
- Social security number
- Account number, credit card number or debit card number, in combination with any required security code, access code or password that would permit access to the person’s financial account.
- A user name, unique identifier or electronic mail address in combination with a password, access code or security question and answer that would permit access to an online account.

For a list of all data elements, please review NRS 603A.040
FERPA Registrar PII relating to students; can be grades, class schedules, etc.
Protect Health Information (PHI/HIPAA) School of Medicine: Dean, University: Division Head or VP Any information about health status, provision of health care, or payment of health care that is linked to an individual.
Export Controlled Data VPRI Further information, and a definition of  Export Controlled Data can be obtained from the Office of Sponsored Projects.
Personal Files End User Any files (including photos and music) that is unrelated to the work that you conduct for the University.
For assistance in clarifying the type of data you are working with, contact the data owner. If you are unable to identify the data owner, or for technical assistance, please contact OIT Support.

Additional policies for research data storage are available on the Research and Innovation website. 

Details

Article ID: 116948
Created
Thu 9/24/20 1:21 PM
Modified
Tue 7/6/21 2:50 PM