UW Privacy Office

Confidential Data Risk Guide Overview

Announcing the Retirement of the UW Confidential Data Risk Guide (CDRG)

Following consultation with numerous UW partners about priorities, capacity, and conditions, the UW Privacy Office retired the “UW Confidential Data Risk Guide” (CDRG) on Friday, March 1, 2019.

The CDRG was initially developed in partnership with UW Information Technology (UW-IT) and the Office of the Chief Information Security Officer (CISO) to help UW employees make informed decisions about how to properly protect and manage UW confidential data when using UW and/or 3rd party systems and services.  While this need continues, maintenance of the CDRG has demanded increasing levels of resources and expertise across the UW to: keep the guidance up-to-date; identify and prioritize possible systems and services to add to the CDRG; evaluate corresponding requirements, controls and contract language; and capture the associated advice/guidance in the CDRG.

Given current priorities in UW-IT, Office of the CISO, and UW Privacy Office, there are no longer resources available to sustain the CDRG. The leadership from these offices has collectively decided to retire the CDRG in order to invest their limited resources into other higher-priority initiatives.

Please direct future inquiries regarding IT systems and services, information security, or policies and practices, to help@uw.edu.

For information about the collection or use of personal data, incidents or data breaches involving personal data, or privacy-related policies and practices, please contact the UW Privacy Office at uwprivacy@uw.edu.