Wageningen University & Research conducts research involving personal data, confidential data and even secret data. Therefore WUR wants to ensure that these types of research data are kept secure.
Data classification helps to secure data properly. It indicates the potential impact or damage that a data set may cause to WUR. Each classification includes both technical and organisational measures to reduce the risk of an incident. The higher the classification, the stricter the measures with regard to for example storage solution or data exchange.
The importance or impact of a dataset is determined by the potential damage if data are no longer available, integer or confidential. We determine where the damage can manifest itself from four perspectives: public image, operational, financial and privacy. The highest impact on these perspectives determines the data classification. There are four classification categories: negligible, some, serious and disruptive. The diagram below is a guideline for when a dataset fits into a particular category. The data controller takes care of the data classification.
The data classification of your research data determines the organisational and technical measures that must be implemented in the systems that process data (see 'Storage solutions' and 'Exchanging data'). Use the white list (intranet WUR, login required) to see which other software is suitable for certain data classifications.
For more information on data security see the Information security policy of Wageningen University & Research.