2.2 information classification Flashcards
what is sensitive data
data that must be protected from unauthorised access to maintain the privacy and security of an individual or organisation
what are the three types of sensitive information
personal
business
classified
what is personal information
personally identifiable information that can be traced back to an individual. disclosure of this information could lead to identity theft
what is business information
information that poses a risk to a business if obtained by a competitor or the general public. e.g. trade secrets or financial data
what is classified information
information belonging to a government body and restricted according to level of sensitivity. e.g. restricted, confidential, top secret. unauthorised access can result in a breach of national security
what must holders of information comply with
current regulations and legislation surrounding the holding of information. failure to comply can result in fines, imprisonment, loss of business or reputation.
what is public information
information that can be made available to the general public. it is considered to be desirable and non-objectional by the organisation/person releasing the information
what is confidential information
information that is meant to be kept a secret or private. e.g. marketing strategies, software coding, sealed bids for contracts.
what is information classification
the sorting of information into different information types.
what is non-sensitive information
information that is readily available e.g. addresses of shops
what is anonymised information
information that has any links to the person who created it or what it is about is removed.
who is a stakeholder
those who have an interest in or are impacted by the actions of an organisation. they can be internal or external.
