Information and Communication Technology Office (ICTO) | Information Security Tips (July 2025) – Handling Confidential Information and Mass Emails | Information and Communication Technology Office (ICTO)

Handling Confidential Information
- Protect Confidential Data: When dealing with confidential information, use strong passwords and encryption tools, especially when data needs to be taken off-campus.
- Delete Immediately: After processing confidential data, delete any copies immediately to minimize the risk of data leakage.
- Avoid Public Networks: Never process or transmit confidential data over public Wi-Fi networks or shared computers.
Handling Mass Emails
- Check Before Sending:
  - Carefully verify recipients, content, and attachments before sending emails, especially to third parties, as emails cannot be retracted once sent.
  - Use “Blind Carbon Copy (Bcc)” to protect recipients’ privacy and prevent unnecessary email replies caused by “Reply All”.
- Clear Subject Line: Use a clear and specific subject line to help recipients distinguish legitimate emails from spam or phishing attempts.
Other Tips
- Account Security: Enable two-factor authentication (2FA) for accounts used to handle confidential data, and use strong, unique passwords.
- Device Protection: Use biometric authentication (e.g., fingerprint or facial recognition) to secure your devices.
- System Updates: Regularly update your operating system, browser, and software to patch security vulnerabilities. Enable real-time antivirus protection and perform regular scans.

Information Security Tips (July 2025) – Handling Confidential Information and Mass Emails