Information Technology Policies and AI
Understand "Enterprise Data Protection"
Enterprise Data Protection ensures that your data is not viewed or accessible to anyone but you. This means that AI platforms with these protections do not share your data, including uploaded documents or AI output in any way. Brandeis currently provides three tools with Enterprise Data Protection, including Google Gemini, Microsoft Copilot and Zoom, as long as you log in with your @brandeis.edu account.
Please be aware that any other product, even if using a "pro", "paid-for" version, or a product that allows you to "opt-out" of data useage and collection, do not guarantee this level of protection.
Examples of Data That Should Not Be Used in AI
- Regulated Data: PII (Personal Identifiable Information), PHI (Personal Health Information), FERPA data, HIPAA, data protected under the Gramm-Leach-Bliley Act (GLBA)
- Research Data that contains use agreements
- Confidential information such as financial, security configurations
Data Use Policies
Brandeis University is committed to protecting the privacy of our community. This requires the utmost attention to ensuring the security (and thus confidentiality) of the information collected and maintained by the university. It is important to understand policies relating to data governance, data classifications, copyrighted material and the university's Written Information Security Policy before placing any Brandeis-owned or otherwise sensitive data into AI platforms. Review these policies at the links provided:
- Data Governance Program
- Data Classification Standard
- Copyright
- Intellectual Property
- Written Information Security Policy (WISP)
- FERPA
- Other ITS Policies