Which action demonstrates secure data handling in an educational setting?

Secure data handling in educational settings means protecting student and staff information from unauthorized access by using encryption and strict access controls. Encrypting data at rest makes the information unreadable if storage media are lost or stolen, and restricting access ensures only people with a legitimate need can open or work with the data. Together, these practices help meet privacy expectations and legal requirements, such as confidentiality rules, by reducing the risk of a data breach. Using encrypted storage with restricted access is the best choice because it directly guards the data itself and limits who can view it. Even if someone gains physical access to a device or storage system, they would still need the decryption key and the proper authorization to read the information. This approach supports the principle of least privilege, ensuring staff can access only the data necessary for their role. Sharing passwords in a team chat undermines control over authentication, giving others the ability to access multiple systems with one credential. Posting private data publicly eliminates privacy protections entirely. Storing data on personal devices without safeguards leaves information vulnerable to loss, theft, or inadequate local security measures.