Skip to main content

 

Rutgers Data Classification and Storage Matrix

See Rutgers Policy 70.1.2 “Information Classification” for details

Key
= Yes    X  = No    ?  = Info   ?* = Link to add’l info
Cloud Sync and Streaming Storage
Box
    OneDrive

(Rutgers Connect)

Google Drive

(ScarletApps)

Public

Internal

Course materials shared with students and instructors

Materials intended for publication/shared on non-password protected Rutgers websites

Licensed software

X

NetID usernames/student ID numbers/employee numbers

X

Internal memos and planning documents

X

Student records (“FERPA”)

X

Copyrightable and patentable information related to research

?

US Government Controlled Unclassified Information (CUI)

X

Bank accounts & Financial Data

X

Social security numbers, drivers license numbers, or passport numbers

X

Research materials containing IRB-prohibited data

?

?

X

Protected Health Care Information (“PHI”)

?

?

X

Library circulation or use records **

?

?

X

Proprietary information covered under contract or non-disclosure agreements*

?

?

?

Institutional Infrastructure (gas & electrical maps, etc.)

?

?

?

HI-TRUST certified departments

X

X

X

Login credentials (i.e. username AND password)

X

X

X

Police records

X

X

X

Credit/debit card numbers

X

X

X

International Traffic in Arms Regulation (ITAR)

X

X

X

US Government Classified

X

X

X

NIST 800-53 (FISMA)

X

X

X

 

NOTE: Items marked with a ? either have:
1. Special conditions attached to the storage of this type of data or
2. Approval is required before the listed type of data can be stored in the service
Hold your mouse over the ? for more information

* The approval of the sharing and storage of this data is depended upon the grant or contractual agreement
** The approval of the sharing and storage of this data is depended upon Library administration approval

Data Sharing and Security

Box provides best-in-class security, compliance and data protection for its users, including encryption during transmission of data to and from the Box cloud. In addition, data stored on Box servers is protected as the company strives to adhere to data privacy standards. Due to global, federal, state, and local laws — combined with university policies and standards — Box should only be used for certain types of data. Box should not be used to be used to store, collect, or share certain types of regulated and sensitive data.

As a Box user, you are responsible for securing the data on your computers, devices, and with online services. For more information, visit the Box page Security Guidelines.

Helpful Links

File Types Ignored or Blocked by Box Sync and Box Drive

Using Box Notes

Using Tags

12 Ways to Use Box

Info for Delegated Admins