On UNIX, most files on the system are created "public list" unless you take specific steps to change it. This means that anyone else can list (but not read) your files. Certain special directories (including the "www" and "public" directories) are created "public read", which means anyone may view these public files. If you have files that you want to keep very private, you should put them in subdirectories of your home directory and protect the subdirectories (using the AFS "fs" command). Do NOT try to protect your whole home directory; it must remain "public list" for the system to function properly.
On the Windows PCs, any file stored in your "My Documents" or on your "Desktop" is "public list"; if you have files where even the filename reveals sensitive information, they should be kept in a folder with more restrictive permissions (do NOT change the permissions on the "My Documents" or "Desktop" folders as the system needs to be able to list those files).
To learn more about granting and revoking others' permissions on your files, please read the AFS TUTORIAL.
See section IV of "A Policy Framework for the University's Network: Electronic Right and Responsibilities at UNC-Chapel Hill" regarding privacy, confidentiality, and freedom of expression: "The University expects members of the faculty, staff, and student body to become familiar with individual and institutional responsibilities to protect confidential information and with the risks to privacy inherent in digital technologies..."
Users are expected to follow conventional standards of ethics and polite conduct in the use of computing facilities. While the Department will make reasonable efforts to maintain the confidentiality of users' files and protect the contents from loss, it cannot be held liable for the inadvertent or unavoidable loss or disclosure of the contents, or for disclosure resulting from the unethical or unlawful acts of others. Users also need to realize that there are risks involved with electronically storing any data, especially on any computer which is connected to the network. It is recommended that you DO NOT PUT CONFIDENTIAL DATA ON ANY NETWORKED SYSTEM. If it must reside in electronic form, encrypt the data and put it on a non-networked computer in a LOCKED office.
System Administrators will not read files within users' private directories without probable cause and notification. To make a file or directory unreadable, either encrypt it (e.g. see the UNIX crypt command or PGP on Windows or UNIX) or leave it off the system. Also, electronic mail messages are not encrypted; they are sent across the network as plain text.
From the University of North Carolina at Chapel Hill Personal Use Policy, "6. Users should be aware that internal or external audit or other needs may require examination of uses of University resources or services and should not expect such uses to be free from inspection." Circumstances in which authorized university personnel may review the contents of private files include, but are not limited to, the following:
Some users are under the impression that their activities on the internet are largely anonymous and untraceable, but this is untrue. In fact, almost all of your activity on the internet is logged by many computers systems you may access (both at UNC and elsewhere). These log files may be reviewed to ensure smooth operation of the Department's computers. While illegal activity is not actively searched for, if it is seen, an inquiry may be made.
In the case of suspicion of unauthorized access or any other illegal activity, the Department systems administrators, following approval of the Department chair or, in his/her absence, following the approval by any of the Department assistant chairs, reserve the right to study the files of those users suspected of involvement. The users will be notified and no actions will be taken without the approval of the Department chair or one of the available assistant chairs.