Information security

Information security is everyone's responsibility.

The University uses a HIGH (red), MEDIUM (amber) and LOW (green) rating to identify confidential information based on the level of harm that would result if this information was lost, stolen or accidentally disclosed to others. All members of the University community need to know how to:

• Protect confidential information
• Communicate it safely
• Retain information only as long as needed by the University
• Destroy it securely when no longer needed

More information is in our guides:

• Information Security leaflet: what information do  I need to protect and how?
• Locking your screen
• Essential e-learning for everyone
• Emails and malware
• Red, Amber and Green 'data codes'

We all rely on information security measures to:

• Work collaboratively and effectively with colleagues, students and partners worldwide so that the right people get the right information at the right time.
• Give students, staff and stakeholders confidence that we keep their confidential information secure.
• Protect our academic research and intellectual property.
• Maintain business continuity.
• Defend our interests and strengthen the University’s reputation.
• Meet our statutory obligations.
• Protect our corporate memory.

Taking a lifecycle approach, our information security management programme sets out the policy, personnel, physical and technology controls to maintain:

• Confidentiality: protecting information from unauthorised access and disclosure.
• Integrity: safeguarding the accuracy and completeness of information and preventing its unauthorised amendment or deletion.
• Availability: ensuring that information and associated services are available to authorised users when required.

Find more information about our policies, procedures and guidance on information security.