Skip to content

Sensitive Data on the HPCC

Data that are subject to external security requirements are considered sensitive data. These requirements may be imposed by regulations or contractual obligations. In either case, users that intend to store sensitive data on HPCC systems must work with the HPCC to ensure data security.

Examples of sensitive data include:

  • Personally Identifiable Information (PII)
  • Protected Health Information (PHI)
  • Controlled Unclassified Information (CUI)
  • Data covered under the Heath Insurance Portability and Accountability Act (HIPAA)
  • Data covered under the Federal Information Security Management Act (FISMA)
  • Data covered under the Federal Education Rights and Privacy Act (FERPA)
  • Data with security requirements set by the MSU Institutional Review Board (IRB)
  • Controlled access data from the NIH Database of Genotypes and Phenotypes (dbGaP)

Information about the HPCC's Sensitive Data Policy is available to users with MSU credentials.

MSU users may also visit for more information about data storage choices on campus (NOTE: This page is only accessible from campus or using Campus VPN).