You are here
Research > Good Data Protection Practice in Research Checklist
Research Data Protection Checklist
- Check data is accurate
- Collect no more data than is necessary
- Pseudonymise personal data (unless it would impair your research)
- Keep the data for as long as necessary, as short as possible
- Erase or rectify data without delay if requested by participant
- Keep data secure
- Keep records of all data collected
- Vet any Data Processors and put binding contracts in place (Article 28 GDPR)
- Put ‘arrangements’ in place with Joint Controllers (Article 26 GDPR)
- Do not transfer data outside EEA without consulting the Data Protection Officer
- Conduct a Risk Assessment
- Conduct a Data Protection Impact Assessment (DPIA) if the research is considered high risk
- Notify any data breaches to the DPO without undue delay