CAES Protection Level Assessment

 

After submitting the Protection Level Assessment (PLA) form, the email address provided during the process will receive a confirmation email that the assessment was received.




 

Requestor Information

 

 

Please enter your first and last name

 

Enter your UC Davis email address.


NOTE: A copy of the request will be sent to this email address.

 

Enter a phone number you can be reached at.

Phone
 

Select your local IT Department from the list.

 





 

Related Records

 

 

If you have already submitted one for this, what is the Software Request ID (CAES-SW-#####) for the CAES Software Request?


If you are unsure what to enter here, you can search your email for "CAES-SW-" or contact your local IT Department.

 

If a request has already been submitted throughPrePurchasing, please provide the PrePurchasing Request Number.

 





 

Vendor Information

 

 
 
 
 




 

Use Case Information

 

 
 
 
 





 

Data Sensitivity Assessment

 

 

More Information:

  • Human subject research data with individual identifiers (P4) (More Info)
  • Individually identifiable genetic information (P4) (More Info)
  • Human Protected Health Information (PHI) / patient records (P4) (More Info)


 
 

More Information:

  • Student education records - These records include transcripts and grades, degree information, class schedule, disciplinary records, advising records, and other nondirectory information (P3) (More Info)
  • Student special services records - These records may contain information needed to provide services or plan accommodations, but for which the student has an expectation of privacy. (P3) (More Info)
  • Exams - Questions and answers (P2)
  • Financial aid information / Student Loans (P4) (More Info)
  • Student disability or medical information - Disability information or other medical information collected from students to provide services. (P4) (More Info)
 

More Information:


 

More Information:

  • Attorney-Client privileged information (P3) (More Info)


 
 

More Information:

  • Export Controlled Research (ITAR, EAR) (P3/P4) (More Info)


 
 

Personally identifiable information (PII) is any data that can be used to identify a specific individual. Social Security numbers, mailing or email address, and phone numbers have most commonly been considered PII, but technology has expanded the scope of PII considerably. It can include an IP address, login IDs, social media posts, or digital images. Geolocation, biometric, and behavioral data can also be classified as PII.


More Information:

  • Additional Information on PII
  • Sensitive Data - An individual's first name (or first initial) and last name in combination with any of the following: Social Security Number, Driver's license number, financial account information such as a credit card number, medical information. (P4) (More Info)
  • PII or PI in large quantity (> 500 records) - Identifiers such as a real name, alias, postal address, unique personal identifier, online identifier IP address, email address, account name as defined by GDPR Article 4.1 (P3) (More Info)


 
 
 
 
 
 





 

Risk and Impact Assessment

 

 
 
 
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.