Data Owners are responsible for identifying any sensitive information within the OFFICIAL-SENSITIVE category and for putting in place appropriate business processes to ensure that it is securely handled, reflecting the potential impact from compromise or loss and in line with any specific statutory requirements.
Individuals should be encouraged to exercise good judgement and provide meaningful guidance on how to handle any sensitive information that they originate.
