ITS Online»Antivirus & Data Security»Security Overview

Security Overview

This page is a list of policies and resources on security and privacy at Penn. Included below is information on computing risks and responsibilities for Penn Carey Law faculty and staff.

On this page

General Information about Security & Privacy at Penn

Here are the main security and privacy links for Penn including policies and guidelines. We recommend you read these sites to learn more about computing safety and security.

Reporting Computer or Offline Security Incidents: Under Penn’s Incident Response Policy, faculty, staff, and students using Penn systems are required to report any suspected or confirmed computer security incident. Please contact or (215) 898-9140 to report an incident.

Confidential Data & Student Records

Working with Penn Data

Staff and Faculty who connect to Penn Carey Law servers or access data have special responsibilities.

Please make sure you follow the follow best practices for secure computing including:

  • Don’t use email to send sensitive data.
  • Use OneDrive, SharePoint and Penn+Box to store data. Only sync when needed.
  • Use SecureShare to share highly sensitive data with Penn colleagues.
  • Keep only information you need - digital cleanup.
  • Use your Law School issued computer when working with Penn Carey Law data/applications - not a personal computer. 

Computing Responsibilities

  • Report your system if lost or stolen: both mobiles and Windows computers allow remote data deletion.
  • All mobile devices (including laptops) need to be encrypted.
  • Use strong, complex passwords and store using LastPass.
  • Multifactor authentication is required for both PennKey and LawKey.
  • Use a device PIN or password-protected screensaver.
  • Keep antivirus up to date: (for personal devices install Sophos)

Best Practices

  • Don’t save passwords.
  • Logoff of password protected websites when done.
  • Don’t use untrusted computers (public kiosks/Internet cafes) or free wireless access points to access sensitive data or Penn systems. Change your password if you have used an untrusted computer or Wi-Fi.


More Info:

Latest Tips

Screenshot showing protected version Copilot

Microsoft Copilot provides AI-powered web search, answers, content generation, and information summarization via your web browser


All student/alumni email addresses will transition from to over two year period