Using Grammarly with Sensitive Data: Important Guidelines
Introduction
Grammarly is a popular tool that helps improve writing by offering suggestions for grammar, spelling, and style. While it is very useful, it’s important to use Grammarly carefully when dealing with sensitive information. Here’s what you need to know:
Conditional Approval of Grammarly
Grammarly is approved for use, but with an important condition: When working on documents with high risk data, Grammarly must be disabled. This is because Grammarly sends all the text you type to its servers for analysis, and this data is stored in their database. This can pose a risk if sensitive information is included.
Definitions
Sensitive Data: This is a broad term that encompasses any information that needs protection due to its confidential nature.
High-Risk Data: A specific type of sensitive data that includes information which, if exposed, could cause significant harm or is legally protected. Examples are:
Personal Data (PD): Educational records, health and medical information, credit card numbers, employment records.
High-Risk Confidential Information (HRI): Social security numbers, credit or debit card information, financial account information, driver’s license numbers, state ID numbers, passport numbers, human subject information, personally identifiable medical information, biometric information.
What You Need to Do
Identify high risk data:
Before using Grammarly, check if your document contains sensitive information. Sensitive data includes high risk information described below:
High Risk |
---|
Personal data (“PD”) is a subset of confidential information that is information about people. Examples include
A subset of personal data is classified as high-risk, either because the exposure of this information can cause harm or because the information is specifically protected under law. High-risk confidential Information (“HRI” ) includes an individual’s name in conjunction with the individual’s:
In general one may think of high-risk confidential information as personal data associated with a name; extra care must be taken to protect high-risk confidential information in both electronic and paper form. |
Disable Grammarly for Sensitive Documents:
If your document contains high risk data, turn off Grammarly. This can be done by disabling the Grammarly browser extension or the desktop application.
Use Alternative Tools:
For documents with sensitive information, use Microsoft’s integrated grammar and spell check tools instead of Grammarly. These tools do not send data to external servers, ensuring that sensitive information remains secure. Follow our internal guidelines for handling sensitive documents securely.
Application to Email:
While users cannot control the data they receive in emails, they can manage how they handle and respond to such data. The following guidance applies:
Identifying High-Risk Data in Emails:
Review incoming emails for any high-risk data as defined above.
High-risk data often includes personal information combined with identifiable markers like names, social security numbers, financial information, etc.
Disabling Grammarly When Responding:
If an email contains high-risk data, disable Grammarly before composing your response to prevent data from being sent to Grammarly’s servers.
Forwarding or Sharing Emails:
Before forwarding or sharing an email containing high-risk data, ensure Grammarly is disabled to prevent sensitive information from being transmitted to Grammarly’s servers.
Use internal tools or methods for proofreading and sharing sensitive information securely.
How to Disable Grammarly
For Browser Extension:
Click on the Grammarly icon in your browser.
Toggle off Grammarly for the document you are working on.
For Microsoft Word:
To hide disable Grammarly, hover over the Grammarly floating icon and click .