- Disclosure could cause severe harm to individuals and/or the university, including exposure to criminal and civil liability.
- Has the most stringent legal or regulatory requirements and requires the most prescriptive security controls.
- Legal and/or compliance regime may require assessment or certification by an external, third party.
| Expand |
|---|
| - HIPAA protected health records
- PCI-DSS regulated credit card information
- FISMA protected research
|
|