Encryption
In general, if your laptop or mobile device is likely to hold confidential data (e.g. in documents or via email) or you are unsure if it does then you should encrypt it.
Some examples of data that are likely to be confidential are: student or staff records, unpublished research data, reserved committee papers and minutes, and information collected under a data protection statement. If you are storing or processing substantial volumes of personal data then you should consider it confidential and encrypt.
Many devices have built in encryption and there are a also number of third party encryption products available. It is possible to encrypt files, email, storage devices such as a USB flash drives and whole disks.
Built in encryption
- Windows 10
- Mac OSX Lion or later
- iPhone/iPad: Setting a passcode/PIN (or equivalent) of reasonable length on your lock screen encrypts the device
- Android: For many Android devices the above is also true. (You should check your device and supplier online to see if good encryption is enabled in this way.)
Disk encryption
For College owned or managed laptops, we can deliver an Encryption service, or help you to deploy one.
Such services work by entering a passphrase or PIN when the computer is switched on. Without it, the data on the hard disk is indecipherable.
We would securely retain the decryption key, so that we can help 'rescue' the disk if you forget your passphrase or PIN.
If you would like us to encrypt your laptop, please contact it@nuffield.ox.ac.uk
Tablet/smartphone encryption
Such devices often have encryption built-in, and rely in on a decent 'unlock' mechanism (e.g. password, PIN or thumbprint) to decrypt the internal disk. However, it's not immediately obvious as to whether or not each device does this sufficiently well. Please come and talk to us. We are happy to check your setup.
Further information
You should find the advice provided on the following site very helpful https://www.infosec.ox.ac.uk/protect-my-computer