Data Classification | UC Davis IET

At the University of California, protecting our Institutional Information and IT Resources is critical to our mission teaching, research and public service. UC Davis follows the Electronic Information Security Policy, or IS-3. 

The policy requires compliance with the UC Institutional Information and IT Resource Classification Standard. 

Protection Levels P1 through P4 define levels of protection for systems, assets, and information used by the university and its affiliates. 

Levels P3 and P4 are the highest levels of protection used to secure the most sensitive data and equipment to ensure their confidentiality, integrity, and availability. 

What does this mean for you? 

If you have access to sensitive information, you should assign the appropriate level of protection and treat the security of that information accordingly. 

Level P3 can include Personnel records; Security Camera recordings; Attorney-Client privileged information; Student education records; Building entry records from key cards and several other types of information where the impact of a disclosure or compromise is moderate.

Level P4 includes data that must be treated with the highest sensitivity. For example, comprehensive Personally Identifiable Information, or PII, Financial and Payroll data, Health records,  as well as other information or systems where the impact of a disclosure or compromise is high.