Difference between revisions of "Theme:61d9a3f5-8f8b-4f6f-8363-fa53f959f131"

From The Embassy of Good Science
 
Line 1: Line 1:
 
{{Theme
 
{{Theme
 
|Theme Type=Good Practices
 
|Theme Type=Good Practices
|Has Parent Theme=Theme:6f515a18-ce5f-42b0-8741-27248f6435a0
+
|Has Parent Theme=Theme:B2331451-5a6a-4aa2-a3d5-c68d2c96c8e1
 
|Title=The impact of the GDPR on scientific data
 
|Title=The impact of the GDPR on scientific data
 
|Is About=On May 25th, 2018, the General Data Protection Regulation (GDPR) entered into force in Europe. The GDPR sets out the new rules researchers must adhere to when processing personal data.<ref>EU General Data Protection Regulation (GDPR) (2018). Available online at: https://gdpr-info.eu/</ref>Personal data is any data with which a person can be directly or indirectly identified. Researchers should conform to the GDPR principles of data protection to protect the privacy rights of their study participants and avoid legal issues.
 
|Is About=On May 25th, 2018, the General Data Protection Regulation (GDPR) entered into force in Europe. The GDPR sets out the new rules researchers must adhere to when processing personal data.<ref>EU General Data Protection Regulation (GDPR) (2018). Available online at: https://gdpr-info.eu/</ref>Personal data is any data with which a person can be directly or indirectly identified. Researchers should conform to the GDPR principles of data protection to protect the privacy rights of their study participants and avoid legal issues.

Latest revision as of 14:16, 22 October 2021

The impact of the GDPR on scientific data

What is this about?

On May 25th, 2018, the General Data Protection Regulation (GDPR) entered into force in Europe. The GDPR sets out the new rules researchers must adhere to when processing personal data.[1]Personal data is any data with which a person can be directly or indirectly identified. Researchers should conform to the GDPR principles of data protection to protect the privacy rights of their study participants and avoid legal issues.

  1. EU General Data Protection Regulation (GDPR) (2018). Available online at: https://gdpr-info.eu/

Why is this important?

Research data often contains personal characteristics, such as a name, location data, or physical, physiological, genetic or cultural features of a person. For these, the GDPR provides the following principles in article 5:

  • "Data should be processed lawfully, fairly and in a transparent manner."
  • "Data should be collected for specified, explicit and legitimate purposes and is not further processed in a manner that is incompatible with those purposes."
  • "Data should be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed."
  • "Data should be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed. For scientific data, it is often recommended to use pseudonymization as a technique to further protect subject privacy. Long-term archiving for scientific purposes is allowed when in accordance to Article 89 of the GDPR."
  • "Data should be processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss."

For whom is this important?

What are the best practices?

Researchers that work with personal data can consult the GDPR online here. In 2020 the European Data Protection Supervisor issued A Preliminary Opinion on data protection and scientific research.

You should also be able to contact your local Data Protection Officer or study supervisor for more information on handling personal data.

Other information

Cookies help us deliver our services. By using our services, you agree to our use of cookies.
5.1.6