A security incident is when information is at risk of unauthorized access, use, disclosure, modification or destruction, or there is an interference with an information system.
Examples of a security incident include:
- Lost, stolen, or misplaced electronic devices
- Lost, stolen, or misplaced paper documents
- Misrouted mail, email, or fax communications
- Compromised security of information on an electronic device (computer virus or malware) or secured physical location of a building (clinic chart room)
Immediately report any actual or suspected security incident to the IUSO Compliance and Privacy Office. If the security incident involves a compromised computer system, include the IUSO IT staff.