Using the Updated Information Security Classification Scheme
23 Apr 2026
We work with all sorts of information - some of it’s highly sensitive, while some is meant for everyone to see. The Information Security Classification Scheme makes it easier for you to know how to handle, share and use information.
Picking the right level for each type of information is key to ensuring the best approach - for example when using Microsoft Copilot and other Microsoft 365 tools or storing research data. It’s all about making sure we treat information the right way, every time we use it.
What’s new?
We’ve listened to your feedback and introduced a new classification level called ‘Protected’. Information in this category, whilst not available to the wider public, is intended for sharing with other colleagues or collaborators and partners where there is no personal data, and no other reasons not to share it such as contractual obligations or valuable intellectual property. The existing higher levels of the scheme haven’t changed, so anything more sensitive should still be handled as before.
Why it matters
Consistent and regular use of the Information Security Classification Scheme:
- protects sensitive data from breaches and misuse
- helps meet legal and contractual requirements
- improves efficiency by standardising data handling
- supports quick and effective incident response
- enables secure internal and external collaboration
What should you do next?
- Review the scheme and bookmark the page on the website
- Use the scheme when you handle information, for example:
- when you share information inside or outside the University
- when you collect or process new information
Any questions?
- Visit the Information Security Classification Scheme website
- Email information.governance@manchester.ac.uk with the subject ‘Information Security Classification Scheme’.