Portable storage media, such as approved USB drives, optical and tape media must be encrypted with strong passwords and proper key management in order to store Level 4 information. If you need an approved USB drive, have questions or need help, send an email to ithelp@harvard.edu to request an information security consultation for Harvard-approved external encrypted portable storage media.

Send highly sensitive or significant amounts of Level 3 confidential information and any Level 4 confidential information by a secure file transfer method.

Secure File Transfer powered by Accellion Kiteworks is available by following the links below.

For more information on the new Harvard Secure File Transfer powered by Kiteworks, visit our Service Catalog and our ...

Identity Finder is a tool which users can run them selves to identify any Level 4 High Risk Confidential Information.

Detailed Identity Finder instructions for PC users.

Detailed Identity Finder instructions for Mac users.

Use software (e.g. Identity Finder) to scan systems for HRCI and contact your local IT help desk to obtain such software.

Use or store Level 3 or higher information only on protected servers or services

Do not store Level 3 information on unencrypted devices. For more information on how to ensure that your devices are encrypted, see the checklist for encrypting your device type.

Work from materials stored on approved servers or services and do not copy them to your local system. If you are conducting field research to collect Level 4 data and cannot meet this requirement send an email to ithelp@harvard.edu to request an information security consultation for Harvard-approved external encrypted portable storage media and process.

Do not store Level 3 information on unencrypted devices. For more information on how to ensure that your devices are encrypted, see Device Configuration Checklists.