Data Classification. DST must assign a classification rating that indicates the level of protection that should be applied when Fund Confidential Information is stored, processed, accessed, or transmitted. This includes identifying paper, electronic and other records, computing systems, and storage media, including laptops and portable devices used to store Fund Confidential Information, except where the WISP provides for the handling of all records as if they all contained Fund Confidential Information.
Data Classification. The State classifies data into categories based on the sensitivity of the data pursuant to the Security policy and standards promulgated by the Office of the state of Washington Chief Information Officer. (See Section 4, Data Security, of Securing IT Assets Standards No. 141.10 in the State Technology Manual at xxxxx://xxxx.xx.xxx/policies/141-securing-information- technology-assets/14110-securing-information-technology-assets. Section 4 is hereby incorporated by reference.) The Data that is the subject of this Contract is classified as indicated below: ☐ Category 1 – Public Information Public information is information that can be or currently is released to the public. It does not need protection from unauthorized disclosure, but does need integrity and availability protection controls. ☐ Category 2 – Sensitive Information Sensitive information may not be specifically protected from disclosure by law and is for official use only. Sensitive information is generally not released to the public unless specifically requested.
Data Classification. The State classifies data into categories based on the sensitivity of the data pursuant to the Security policy and standards promulgated by the Office of the state of Washington Chief Information Officer. (See Section 4, Data Security, of Securing IT Assets Standards No. 141.10 in the State Technology Manual at xxxxx://xxxx.xx.xxx/policies/141-securing- information-technology-assets/14110-securing-information-technology-assets. The Data that is the subject of this Contract is classified as indicated below:
Data Classification. The Data Classification category set forth in Schedule A is revised from “Internal Use” to “Secret”.
Data Classification. The State classifies data into categories based on the sensitivity of the data pursuant to the Security policy and standards promulgated by the Office of the Chief Information Officer. (See Section 4, Data Security, of Securing IT Assets Standards No. 141.10 in the State Technology Manual at xxxx://xxx.xx.xxx/ocio/policies/manual.asp) The Data that is the subject of this DSA is classified as indicated below: ☐ Category 1 – Public Information Public information is information that can be or currently is released to the public. It does not need protection from unauthorized disclosure, but does need integrity and availability protection controls. ☐ Category 2 – Sensitive Information Sensitive information may not be specifically protected from disclosure by law and is for official use only. Sensitive information is generally not released to the public unless specifically requested.
Data Classification. A. SVHC will define a data classification scheme which classifies data with respect to levels of sensitivity and confidentiality of the data. Security mechanisms for storage, transmission, handling, and destruction must be implemented to have a direct correlation to the classification of the data.
Data Classification. The Contractor’s data classifications must translate to or include the following classification categories:
Data Classification a. The Washington State Office of the Chief Information Officer (OCIO) has established policies that classify data into categories based on the data’s sensitivity. The categories described in Section 4 of OCIO policy No. 141.10 are adopted and incorporated by reference in this Agreement. Pursuant to Section 4 of OCIO policy No. 141.10 the categories are as follows:
Data Classification. The Department is responsible for classification of data. External Entities are required to abide by data classification requirements as outlined by the Department. Data classification shall be done in accordance with Federal Information Processing Standards (FIPS) Publication 199 and is necessary to enable the allocation of resources for the protection of data assets, as well as determining the potential loss or damage from the corruption, loss, or disclosure of data. To ensure the security and integrity of all data, any data asset is Public, Sensitive or Confidential and should be labeled accordingly. All data falls into one of the following categories: • Public: Information or data that is not classified as sensitive or confidential. Information that, if disclosed outside the State or agency, would not harm the State or Department, its employees, customers, or business partners. This data may be made generally available without specific data custodian approval. • Sensitive: Information not approved for general circulation outside the State or Department where its loss would inconvenience the State/Department or management but disclosure is unlikely to result in financial loss or serious damage to credibility. Examples would include internal memos, minutes of meetings, and internal project reports. Security at this level is controlled but normal. • Confidential: ▪ Data that, by its nature, is exempt from disclosure under the requirements of Chapter 119, F.S. ▪ Data whose loss, corruption, or unauthorized disclosure would be a violation of federal or State laws/regulations. Information of a proprietary nature. Procedures, operational work routines, project plans, designs, or specifications that define the way in which the organization operates. ▪ Data whose loss, corruption, or unauthorized disclosure would tend to impair business functions or result in any business, financial, or legal loss. ▪ Data that involves issues of personal credibility, reputation, or other issues of privacy. ▪ Highly sensitive internal documents that could seriously damage the State or Department if such information were lost or made public. Information usually has very restricted distribution and must be protected at all times.
