Knowing Your Data: Security and Compliance Issues
Presented April 6, 2016
This workshop took an in-depth look at the rules that apply to data over the entire research life cycle. Participants reviewed the OSU Institutional Data Policy and took a case-based approach to investigate data types and their classifications, how they can be shared and stored as well as security and compliance issues. Presenters discussed how this information should be integrated into federally-required data management plans. Presenters answered questions such as:
- In what ways can you and others interact with your data (who, when, where and how)?
- What policies and people are available to guide your decisions?
- How can you ensure that the data you collect is secure?
- How can you safely manage sensitive information? (Which hosting services are okay to use?)
- What should you do if you suspect the loss, unauthorized access, or exposure of institutional data
Speakers:
Arnulfo Perez, Assistant Professor, Department of Teaching and Learning, The College of Education and Human Ecology, The Ohio State University
View Video (includes introduction)
Joe Roush, Chief Information Officer, The College of Education and Human Ecology, The Ohio State University
Gary Clark, Director, Information Risk Management, The Ohio State University Office of the CIO
Amanda Rinehart, Associate Director, Export Controls Office, Ohio State University Office of Research Compliance
Laurel Dean, Associate Director, Export Controls Office, The Ohio State University Office of Research Compliance
Additional Resources
OSU Policy Documents
Insitutional Data Policy
Research Data Policy
Data Element Classification Assignments
Permitted Data Usage By Service
Permitted Data Usage By Activity
OSU Security Training (page links to all three trainings)
- Institutional Data Policy Training (also available in BuckeyeLearn)
- FERPA
- Health Insurance Portability and Accountability Act Training (HIPPA)