Importance of Data Protection and GenAI tools

Privacy and data protection are crucial for our institution's security. Breaches can have severe consequences, so we must handle sensitive and confidential data carefully and maintain proactive measures.

As members of the Concordia community, it is essential that each of us:

• Understands the definitions and usage limitations of institutional data and information.
• Adheres to handling guidelines for different data classes.
• Safeguards data and apply adequate access protections.

Mishandling data, including but not limited to budgetary information, student IDs, research data, etc., through channels like email, third-party storage systems, or utilizing GenAI technology for ideation, data processing, or content translation, can inadvertently lead to the exposure of internal or confidential information, rendering it publicly accessible and posing a significant security risk.

While GenAI offers vast potential for productivity and innovation – and we encourage safe exploration of these tools– adherence to Concordia’s rigorous data-handling protocols outlined in various policies is paramount:

• Policy on Data Governance (PRVPA-4)
• Policy on Confidential Information (HR-36)
• Policy on Records Management and Archives (SG-10)
• Policy Concerning the Protection of Personal Information (SG-9)
• Policy on Computing Facilities (VPSS-30)

Concordia is actively developing comprehensive guidelines on AI usage for both administrative and academic purposes to ensure responsible utilization within our community.

Data protection is everyone’s responsibility. Let’s remain vigilant and proactive in safeguarding our information assets. Should you have any questions or concerns, please speak to your direct supervisor for guidance.