Encrypting mobile and storage devices

Encrypted mobile devices (laptops and netbooks in particular) should always be powered down and not simply put into 'sleep' mode when they are at risk of loss or theft (e.g. when they are in transit). If in sleep mode then encryption is circumvented and the data can be accessed.

All members of the university must act in accordance with the relevant laws and University Information Security Policies.

If you transport restricted University data, or data that is classed as "sensitive" under the Data Protection Act, on any mobile or storage device, be that a laptop, notebook, USB stick, or CD/DVD or similar, then that device must be encrypted. It is further recommended that any mobile or storage device containing restricted data that is only used within the University is also encrypted and/or locked away when the office is left empty in case of theft.

For guidance on how to encrypt mobile and storage devices, please consult the IT Service Desk. (View guidance for IT support staff.)

If you decide to encrypt your personal computer, be aware that there are pitfalls - the most common problem is losing access to your data. Also remember that you must not process or store restricted University data on any non-UoB computer - see the University Secretary's advice on processing data off campus.

UoB-approved USB drives

Secure USB drives are comparatively expensive but are worth the cost given the level of assurance they offer. Recommendations (in order of preference) are:

BitLocker To Go

For those with Windows 10, BitLocker To Go can be used to encrypt a USB flash drive: