Good Practices to Prevent Data Leakage
Here are some good practices for users to prevent data leakage with reference to the IT Security Policy from PolyU ITS:
-
Avoid storing sensitive data over Internet or Public Online Storage Space - Storing sensitive information on the Internet or Public Online Storage Space may cause data leakage if the access permission is not set up appropriately.
-
Avoid using the file sharing or peer to peer software – Using the file sharing and peer to peer software will have a potential security risk of leakage of data or files in your system.
-
Encrypt your files – Encryption mechanism such as 7-Zip AES encryption and Veracrypt disk encryption with strong key authentication should be used when files are being transferred in removable media. Encrypted USB storage device may be used for additional level of protection.
-
Avoid sending sensitive data over Internet e-mail – Sending sensitive information over an Internet e-mail may result in a copy of your data being stored or archived by a third-party server.
-
Virus scan files from external source – Scan the files you have downloaded from the Internet before opening or saving them. Virus scanning is a critical step for data leakage prevention.
-
Ensure physical security of your computer – Loss or theft of a computer, USB storage device or even printer, is a common cause of data loss.
-
Do not leave printed documents unattended – Remember to collect all the printed documents from the network printer and ensure all print jobs are completed when you leave.
-
Protect your files - Setting password to file that contains personal data for email transmission
-
Obtain just the right information you need – Extracting Essential Student’s information only from the Student Management System(SMS) for use.