Personally identifiable information. NIST Special Publication 800-122 defines PII as "any information about an individual maintained by an agency, including (1) any information that can be used to distinguish or trace an individual's identity, such as name, social security number, date and place of birth, mother's maiden name,...Which are considered PII?
Personally identifiable information (PII) is information that, when used alone or with other relevant data, can identify an individual. Sensitive personally identifiable information can include your full name, Social Security Number, driver’s license, financial information, and medical records.What is PII, non-PII, and personal data?
Information that is anonymous and cannot be used to trace the identity of an individual is non-PII. Device IDs, cookies and IP addresses are not considered PII for most of the United States. But some states, like California, do classify this data as PII. California classifies aliases and account names as personal information as well.What is data classification scheme?
Data Classification Scheme. Establish a classification scheme that applies throughout the enterprise, based on the criticality and of enterprise data. This scheme should include details about data ownership; definition of appropriate security levels and protection controls; and a brief description of data retention and destruction requirements,...