Welcome back to our Cyber Security awareness series, where this month we’re looking at best practice for protecting valuable data and protecting privacy. Everyone has an interest in protecting their own data and privacy, and everyone at the University of Stirling has a responsibility to understand and adhere to their legal obligations towards data protection and privacy.
The University of Stirling handles vast amounts of sensitive data, including personal details, academic records, financial information, and research data. Protecting this data and the privacy of any people it relates to is imperative for the reasons below:
Legal Compliance:
The University must comply with various data protection regulations, such as the General Data Protection Regulation (GDPR) in the EU, which mandates strict data handling and protection measures. Non-compliance can result in severe penalties and damage to our reputation.
Academic Integrity:
Ensuring the privacy and protection of students’ academic records maintains trust in our educational process and credibility.
Research Protection:
The University conducts significant research that often involves sensitive or proprietary information. Protecting this data is essential to safeguard our intellectual property and maintain ethical standards.
Personal Security:
For students and staff, maintaining privacy and data protection helps prevent personal information from being misused, which can lead to harassment, discrimination, or other harmful consequences.
Institutional Trust:
Trust between students, staff, and the University is foundational. Effective data protection practices build confidence that this is a safe place for personal and academic pursuits.
Best Practices for Data Protection and Privacy
Protecting data requires a blend of technical measures, procedural safeguards, and smart habits. Here are some essential strategies you can adopt today:
Use Strong Passwords and Multi-Factor Authentication (MFA):
- Create unique, strong passwords for each account.
- Enable MFA to add an extra layer of security.
Encrypt Sensitive Data:
- Ensure sensitive information is encrypted both in transit and at rest.
- Use encryption tools to protect data stored on devices and transmitted over networks.
Regularly Update Software:
- Keep your operating systems, applications, and antivirus software up to date to guard against vulnerabilities.
Be Cautious with Personal Information:
- Limit sharing personal information on social media and other online platforms.
- Be skeptical of unsolicited requests for personal information.
Secure Physical Devices:
- Use lock screens and strong passwords on all devices.
- Don’t leave devices unattended in public places.
Conduct Regular Backups:
- Regularly back up important data to secure cloud storage or external drives.
- Ensure backups are encrypted and stored safely.
Educate Yourself and Others:
- Complete your data protection and cyber security awareness training, and stay informed about the latest threats.
- Encourage others to adopt good data protection habits.
Reporting Data Breaches and Concerns
If you suspect a data breach or have concerns about data protection, report it immediately. See the University’s guidance here: Data Protection/GDPR | About | University of Stirling
Complete your Cyber Security Training
Strengthen your defenses by completing the free training available to all staff and students through the Metacompliance app, accessible directly here: https://universityofstirling.metacompliance.com/ or through Teams along the left-hand side navigation bar:
See the previous posts in this series:
October 2023 – Introduction to Cyber Security
November 2023 – Types of Cyber Security Threats
December 2023 – Social Engineering Threats
January 2024 – Phishing – Don’t Fall Prey
February 2024 – Strong Passwords – Protect your digital fortress
March 2024 – Mobile Device Security
April 2024 – Internet Browsing – Secure your digital life while surfing the open ocean