Process - Piratedrive Folder Administration

Summary

Department and shared Piratedrive folders are required to have one administrator and one backup administrator.

Body

IT Service Desk 252-328-9866 | Pirate Techs Technology Support Centers | Submit a Ticket

Skip to a section: Required responsibilities | Review folder security | Limit user access | Find help and resources

Available to

Piratedrive folder administrators

Required responsibilities

Each department’s Piratedrive folder should have a primary administrator and a backup administrator.

Piratedrive administrators are required to:

  • Plan the folder structure.
  • Maintain documentation of folder administration.
  • Grant and remove user access on as-needed basis. Choose level of access for users (only administrators should have full control).
  • Review and modify user access on as-needed basis (at least twice annually).
  • Obtain ITPC approval to store Social Security Numbers.
  • Obtain IT Security approval of HIPAA data storage measures.
  • Protect sensitive data.
  • Notify ITCS if your role changes and you are no longer a folder administrator.

 

Review folder security

Remove a user’s access as soon as the user retires, resigns, transfers, is terminated or no longer requires access.

Review folder security twice annually. For auditing purposes, IT Security provides an Excel spreadsheet of folder permissions every six months. Review the permissions, make any necessary security changes, and document when the review/changes occurred. It may also be helpful to document permissions for any folders where non-departmental users have access. Download the Security Review Log template from the Piratedrive Support service request.

Limit user access

Consider a user’s role and grant the LEAST level of access required — not everyone needs access to everything!

  • If folders are used by a mix of client operating systems, permissions changes must be made from a Windows computer only as Mac and Linux operating systems treat permissions differently, which could cause a conflict.
  • Consider creating a folder for each user to store their own documents.
  • Reserve some subfolders for specific types of data and only grant access to authorized users. Data such as SSN and HIPAA should be limited to specific users.
  • When adding user permissions, grant the user only the access required. ITCS recommends two basic permissions types:
    • Read-only: This allows the user to open files, save them locally, but not make any changes.
    • Modify: This allows the user full read/write access.
  • Full Control permissions are for the folder administrator/backup administrator. Avoid giving this access to others as it allows them to change permissions. Do not remove permissions for INTRA\domain admins or PIRATEDRIVE\administrators. These groups are required for proper function, maintenance and audit compliance.
  • Avoid adding permissions for large, built-in groups like Everyone, Domain Users or Authenticated Users, as this allows anyone at ECU access to your data. It is a security violation to allow unauthorized persons access to your data.

Find help and resources

  • For more information on IT Security best practices, resources, and compliance, visit the ECU IT Security website.
  • Information on HIPAA privacy and security can be found at HIPAA website.
  • Folder administrators can always contact the IT Service Desk 252-328-9866 for assistance.

Details

Details

Article ID: 67115
Created
Mon 6/10/19 2:32 PM
Modified
Thu 5/2/24 7:58 AM
Service Owner
Enterprise Storage

Related Articles

Related Articles (1)

Allowed sharing and collaboration resources for the ECU wired network.

Related Services / Offerings

Related Services / Offerings (1)

Piratedrive is a secure network attached storage folder available to store sensitive and non-sensitive information.