U Pennsylvania Drafts Policy to Minimize Use of SSNs

  • By Paul McCloskey
  • 06/07/07
The University of Pennsylvania has drafted a policy designed to minimize the use of Social Security numbers at the school after deciding the numbers constitute "sensitive data that can be abused by identity thieves to commit fraud."

The draft policy said, "This abuse can cause privacy harm to Penn constituents and can create compliance and reputational risks to Penn itself."

The policy asks staff, faculty, and university contractors to inventory their online and offline Social Security numbers and take steps to tackle the problem, including:

1. Eliminate the data altogether;
2. Convert it to the school's numerical ID system, PennID;
3. Truncate the data to display only the last four digits; and
4. When the complete SSN is necessary, ensure strict security controls to protect the full data.

In a statement, Penn Vice President of Information Systems and Computing Robin Beck invited the public to comment to the policy by June 21.

"Penn has been committed to a multi-year effort to minimize the use of SSN  and there are now additional tools  that enable faculty and staff to identify where Social Security numbers reside on their systems and to securely delete, convert, or truncate such information," she wrote.

"This draft policy has been created in recognition of the risks that Social Security Numbers present, as well the opportunities to reduce the availability of such data at Penn."

Read More:

About the Author

Paul McCloskey is contributing editor of Syllabus.

Featured

  • glowing digital shield with a checkmark in the center, surrounded by interconnected lines and nodes on a dark blue background with subtle circuit patterns

    Navigating CMMC 2.0: New Cybersecurity Standards Impact Higher Education

    In October 2024, the Department of Defense published a new update to its Cybersecurity Maturity Model Certification enforcing new cybersecurity standards on universities and colleges. With Phase 1 beginning this year, here's what the new requirements mean for higher ed.  

  • glowing futuristic laptop with a holographic screen displaying digital text

    New Turnitin Product Brings AI-Powered Tools to Students with Instructor Guardrails

    Academic integrity solution provider Turnitin has introduced Turnitin Clarity, a paid add-on for Turnitin Feedback Studio that provides a composition workspace for students with educator-guided AI assistance, AI-generated writing feedback, visibility into integrity insights, and more.

  • Stylized illustration showing cybersecurity elements like shields, padlocks, and secure cloud icons on a neutral, minimalist digital background

    Microsoft Announces Security Advancements

    Microsoft has announced major security advancements across its product portfolio and practices. The work is part of its Secure Future Initiative (SFI), a multiyear cybersecurity transformation the company calls the largest engineering project in company history.

  • Two digital hands made of interconnected lines and nodes shaking hands firmly against a minimal technological background

    IBM to Enhance Watsonx Portfolio Through DataStax Acquisition

    IBM has announced it will acquire AI and data solutions provider DataStax, in a move aimed at enhancing its watsonx portfolio and advancing generative artificial intelligence (AI) capabilities for enterprises.