Permissible Services to Store & Transmit Confidential Data

Research and Administrative Data Security Guidance

The University of Chicago’s guide to sensitive data storage and usage is posted at  This website describes allowable ways to store and share sensitive, identifiable information to minimize the likelihood of inadvertent disclosure of sensitive data and records.

Human Subject Confidential Information

To review details on which services the University of Chicago allows to process, transmit, or store human subject confidentiality information, please visit:


Protected Health Information covered under HIPAA Regulations

Health Insurance Portability and Accountability Act (HIPPA) is considered a restricted data classification by the University of Chicago and its Protected Health Information (PHI) is all “individually identifiable health information” held or transmitted by a covered entity or its business associate, in any form or media, whether electronic, paper or oral.

The following shows which services can and cannot be used to store and share PHI. 


Additional Resources

Data Stewardship Council ( )

Human Resources Policy - Treatment of Confidential Information (