Data Policies
Digital follows the JHA Data policies found in the JHA Policy Center. These sections are particularly pertinent to the Digital org.
Data Classification
Banno is Tier 1 per JHA data classification.
| Tier | Information Type | Confidentiality | Integrity | Availability |
|---|---|---|---|---|
| 1 Confidential | PCI, Customer Sensitive Data | High | High | High |
| 2 Sensitive | PHI, JHA IP | High | Moderate | Moderate |
| 3 Public Public,Other | Low, N/A | Moderate | Low |
Customer Sensitive Data
A customer’s name, address, or telephone number, in conjunction with the customer’s social security number, driver’s license number, account number, credit or debit card number, or a personal identification number or password that would permit access to the customer’s account. Sensitive customer information also includes any combination of components of customer information that would allow someone to log onto or access the customer’s account, such as user name and password or password and account number.
You may also hear the term PII or Personally Identifiable Information when referring to Customer Sensitive Data. Banno employees must take appropriate steps to secure the PII of our customers. Employees are forbidden from emailing, sharing, logging or Gist-ing any PII data. Banno has taken steps to mask and encrypt this data through our systems.
As a Jack Henry employee, you may have access to credentials and PII data. You must take the appropriate steps to secure your data as described below.
Data Storage
The two basic expectations for Jack Henry data and the data used to do your work.
- All code should be regularly committed and pushed to GitHub.
- Any and all non-code should be stored on Google/One Drive.
This reduces the impact should your machine crash, be lost or stolen. It also provides one layer of data loss protection because all data should remain on an enterprise approved platform. Jack Henry Digital teams will not provide any assistance to recover data from your machine in the event of a hardware failure or other issue.
External Media
Any and all external media used for backup or transport of any Jack Henry data must be encrypted. All endpoints are setup with encryption when you first receive them. You are strongly encouraged to use Google Drive or One Drive for backups. However, should it be critical and necessary to the completion of your work to use an external drive or media, you must encrypt the drive when initially configuring it. If you need read/write access enable to external media you can contact your Ground Control for an exception.
Local/Personal storage devices
Employees are not permitted to use personal storage devices to backup or supplement the storage capabilities on their endpoints. This includes directly connected external media or network attached storage (NAS) devices.