Other Helpful Information

University Data and Privacy Responsibilities

This policy requires all records to be classified (Public, Confidential, Restricted, or Highly Restricted) based on sensitivity to protect information and prevent unauthorized access. This policy mandates secure storage, data encryption for electronic records, controlled access to systems, and adherence to relevant laws like the Freedom of Information and Protection of Privacy Act (FIPPA) and Personal Health Information Protection Act (PHIPA). Researchers also have specific guidelines under the Research Data Management (RDM) Institutional Strategy, which aligns with the Tri-Agency policy and promotes responsible management and reuse of research data.

Policies also cover the full data lifecycle, including retention, secure disposal, and cross- border storage considerations, and emphasize that faculty, staff, and students are accountable for safeguarding information. Training and institutional support are in place to help researchers meet these requirements.