The Information Security Policy: Doing Data Right

The McMaster University community has a lot of information to protect and the Information Security Policy helps us to do just that. This Policy provides concrete guidelines that will help everyone identify sensitive information, and configure the IT security controls that are required to protect it. This Policy is founded on established information security principles, common frameworks and accepted best practices.

  • Whether it is personal information, personal health information, or intellectual property, we all share the responsibility to keep it safe and private.
  • Whether you are a student, staff, faculty, or guest, you play an important role in keeping our information safe.
  • No matter where information is stored — in a spreadsheet on your laptop, in a secure database on campus, or in the cloud – you need to understand its value and protect it.

Because I conduct research involving human participants, information security matters to me because not only do I have the obligation to keep my data safe for accuracy purposes, I also want to ensure that when study participants entrust their information to me, that I do everything I can to protect their privacy and to uphold the ethical principles of justice, respect for persons, and concern for their welfare. I figure that if I were a study participant, that’s how I’d like to be treated.

Karen Szala Meneok, Senior Ethics Advisor, Research Office for Administration and Support (ROADS)