Private Personal Information (PPI) is a category of sensitive information that is associated with an individual person, such as an employee, student, or donor. PPI should be accessed only on a strict need-to-know basis and handled with care.
PPI is information that can be used to uniquely identify, contact, or locate a single person. Personal information that is “de-identified” (maintained in a way that does not allow association with a specific person) is not considered sensitive.
Appropriate protection of PPI that is not publicly available is required by Laws and Regulations Related to Handling Sensitive Protected Data, contractual obligations, and university policies. These regulations apply to PPI stored or transmitted on any type of media: electronic, paper, microfiche, and even verbal communication.