Regulated Data Chart Guidelines


As a custodian of institutional information, you are responsible for the Cornell data sent, stored or shared on all information technology devices — personal or university-owned — that you use. This responsibility includes choosing appropriate information technology (IT) to manage data.


What is the Regulated Data Chart?

The Regulated Data Chart provides guidance to help you choose appropriate technology tools for sending, storing and sharing institutional information. The chart lists both cloud and on-campus services that you are likely to use as part of your daily Cornell work routine. Use the chart, as directed below.


How to use the Regulated Data Chart

Before choosing a tool to send, store or share institutional information, ask two questions:

  • Question 1: Does the Regulated Data Chart permit use of this IT service with the data type I am interested in working with?
  • Question 2: Do my department/unit policies and my data steward permit use of this IT service with the data type I am working with? If you don’t know, check with your supervisor.

If the answer to both questions is yes, you may use the IT tool to send and store the university data in question.


Important notes for chart users:

  • Information in the chart applies to Cornell’s enterprise versions of the services listed and these should not be confused with consumer versions of these services. Enterprise versions of cloud services are very similar to consumer versions in terms of features and capabilities. However, for enterprise versions, Cornell:
    • negotiates institution-wide terms and prices,
    • vets the service with its legal, policy, supply management, audit, and security specialists,
    • integrates the service into the Cornell environment (so that you can use your NetID and password to log on, for example).
  • The Regulated Data Chart does not apply to data associated with faculty research unless that research falls under a regulation or contract.