Safeguarding your data while travelling

Published: February 13, 2025

A person using a laptop on a table with travel photos and the world map.

Protecting the University’s data is a shared responsibility. When traveling outside Canada, cyber security threats become even more significant. Malicious actors may attempt to intercept calls, monitor internet activity or gain access to your devices. Below is essential guidance for University of Toronto staff, students and faculty who are looking to safeguard their data while travelling on behalf of the University. Read on for best practices!

Before you travel

  1. Update your software: Ensure all your devices have the latest security updates.
  2. Minimize data exposure: Do not carry confidential data. Use temporary cloud storage with only the necessary information.
  3. Consider a temporary device: A “burner” device (a low-cost temporary device) can be used instead of your personal one. If using your personal device, back up your data securely.
  1. Enhance password security: Remove stored passwords, turn off “Remember Me” functions and set temporary passwords for travel. Store them in a password manager like Password Safe or KeePass.
  2. Use secure external storage: If bringing a USB or hard drive, ensure it is encrypted and from a trusted source.
  3. Enable strong security measures: Use strong passwords and enable multi-factor authentication (MFA) on all accounts.
  4. Obtain necessary permissions: Check with your department before taking University data off-site.

As you travel

  1. Keep devices with you: Be vigilant at security checkpoints and never leave your belongings unattended.
  2. Disable auto-connect: Turn off automatic Bluetooth and Wi-Fi connections to avoid unsafe networks.
  3. Avoid public Wi-Fi: Do not use untrusted networks (e.g., hotels, airports, cafes) for University-related work.
  1. Use a VPN: Securely connect to University or personal accounts using UTORvpn. Note: Some VPNs may not work in all countries.
  2. Access files securely: Use O365’s web interface to access confidential University files.
  3. Avoid untrusted devices: Do not use public computers, unknown USB drives or unverified power chargers.
  4. Prepare for loss or theft: Know how to remotely wipe your device. Keep your mobile provider’s emergency number accessible. Set your lock screen to display emergency contact information.
  5. Stay alert online: Avoid clicking on untrusted links or downloading files from unknown sources.
  6. Change passwords after returning: Use a trusted device to reset all passwords used during travel.

Additional resources