It is important that information and data are processed correctly and comply with GDPR legislation. This is regardless of whether you are a student or an employee.
At AU, we use four different classifications:
Regardless of classification, data and information must be processed taking into account information security. No matter whether it is in electronic or physical form.
See where you can store different types of information.
If you process confidential or sensitive personal data, you must decide whether it should be pseudonymised or anonymised. This also applies to data in physical form such as paper.
There are different requirements for storing data depending on whether you apply pseudonymisation or anonymisation. Read more about pseydonymisation and anonymisation.