GDPR

Draft - not currently circulated 

GDPR and research data

The EU General Data Protection Regulation (GDPR) sets out the  requirements across the EU for the legal basis by which personal data may be processed. While each Data Owner has responsibility to comply, supported by the host Institute Data Protection Officer,  ELIXIR is able to bring together effective tools and strategies.

ELIXIR offers

• Knowledge exchange (best practice) 
• An understanding of national differences
• To speak with a European voice (develop a common approach) 

How can ELIXIR help?

ELIXIR have experience with a number of tools and services to support Life Sciences in complying with national requirements:

• Authorisation and Authentication Infrastructure (AAI) 
• Pseudonymisation (Uni. Griefswald tool and OpenPseudonymiser)  
• Privacy Impact Assessment (CNIL) 
• Compliance Assessment (BBMRI-NL login needed)  
• Contract Templates 
• Policy Development
• Data Hosting and Data Sharing agreements

See also:

• ELIXIR Webinar (Feb 2018) 
• BBMRI Code of Conduct for health research

Plans

ELIXIR are planning a second workshop in Brussels to take this work further. Please see the agenda and this registration page. In order to make this occasion as useful as possible it would be helpful to have examples of particular issues or of tools and strategies that have proven effective in complying with the requirements.

Please submit any examples or other inquires via this webform.

See also the notes from the first workshop.

• Human Data
• Use Cases
• Back to the top