Public project-related information regarding Chemistry IT's efforts on this topic.
Cornell employees (staff and academic staff alike) must not expose sensitive data belonging to others. Taking such precautions is not just a good thing to do, it is also university policy.
One way we do this is to not have sensitive data on devices we have the authority to put data on. This could be the computers you use (Cornell-owned, personal, public systems), smart phones, tablets, etc.
To assist each of us in finding such data on the computers we each use, we can use Spirion (formerly Identity Finder) to look for some types of data which may be sensitive.
Implementing a data cleanup process is more involved than just choosing the proper scan tool:
http://www.it.cornell.edu/security/how.cfm?cat=6&tip=95