Encryption Best Practices
As per the Columbia University Registration and Protection of Endpoints policy, all mobile devices including laptops must be encrypted. In addition all sensitive data must be encrypted while in transit and storage. A list of equipment and methods can be found on the Approved Encryption page, additional guidelines and requirements include:
- If you are traveling with files you will need on portable media, such as a USB key, it is recommended that you also have backup copies of the files in in case the portable media is lost or damaged during travel:
- Files containing sensitive data that you are emailing to an address outside of the OHCA must be encrypted using Secure Email. See When is Secure Email required? for more details.
- The security of data is the responsibility of the owner—YOU. This refers to files that are shared on network resources, transferred to portable drives, or transmitted via email. Please exercise caution and follow all encryption requirements.