Difference between revisions of "Data Ownership"
Line 3: | Line 3: | ||
* Before acquiring any data, it is critical to establish '''data ownership'''. | * Before acquiring any data, it is critical to establish '''data ownership'''. | ||
* '''Data ownership''' can sometimes be challenging to establish, as regulations regarding data and information might vary across [[Impact Evaluation Team|research teams]], and the various organizations and governments they interact with. | * '''Data ownership''' can sometimes be challenging to establish, as regulations regarding data and information might vary across [[Impact Evaluation Team|research teams]], and the various organizations and governments they interact with. | ||
* The best approach is always to consult with a local partner, and enter into specific legal agreements (like | * The best approach is always to consult with a local partner, and enter into specific legal agreements (like a [[Data_License_Agreement|DLA]] or [[Data_License_Agreement#Read_First|NDA]]) establishing ownership, access, and publication rights. | ||
* It is especially critical to think about '''data ownership''' when [[Research_Ethics#Confidentiality|confidential data]] is involved, or in the case of [[Personally Identifiable Information (PII)|personally identifiable information (PII)]]. | * It is especially critical to think about '''data ownership''' when [[Research_Ethics#Confidentiality|confidential data]] is involved, or in the case of [[Personally Identifiable Information (PII)|personally identifiable information (PII)]]. | ||
Revision as of 16:29, 21 June 2021
Research teams that acquire original data must also consider data ownership downstream, through a clear set of rules that they will use to release data to other researchers, or to the general public. The team should consider whether they can publish the data in full after removing personal identifiers. For example, the team must consider whether it would be acceptable for their data to be copied and stored on servers anywhere in the world, whether they would prefer to manage permissions on a case-by-case basis, and whether they expect that data users would cite or credit them. Similarly, the team can require users in turn to release their derivative datasets or publications under similar licenses, or offer use without restriction. There are simple license templates (like one used by the World Bank) for offering many of these permissions. Moreoever, at the planning stage, the team should make sure that all licensing agreements, data collection contracts, and informed consent processes used to acquire the data specifically deal with possible future uses of the data.
Read First
- Before acquiring any data, it is critical to establish data ownership.
- Data ownership can sometimes be challenging to establish, as regulations regarding data and information might vary across research teams, and the various organizations and governments they interact with.
- The best approach is always to consult with a local partner, and enter into specific legal agreements (like a DLA or NDA) establishing ownership, access, and publication rights.
- It is especially critical to think about data ownership when confidential data is involved, or in the case of personally identifiable information (PII).
Overview
In some cases, data is implicitly owned by the people who it is about. In others, it is owned by the people who collected it. In still more, it is highly unclear and there are varying norms. The best approach is always to consult with a local partner, and enter into specific legal agreements establishing ownership, access, and publication rights. This is particularly critical where confidential data is involved – that is, when people are disclosing information to you that you could not obtain simply by observation or through public records.
Data Licensing Agreement (DLA)
Data license agreements (DLA), or data use agreements (DUA) are documents that describe what kind of data is being shared with recipients. A DLA clearly states the purpose and duration of access being provided to the recipient, along with restrictions and security protocols that the recipient of the data must follow. Other contracts, such as a non-disclosure agreement (NDA), may also be used to guarantee confidentiality of sensitive data.
While DLAs can differ in terms of structure and the level of detail depending on the context, they must clearly cover the following aspects:
- The legal framework within which access to the data will be provided
- Scope of the study for which requestor needs access to the data
- Restrictions on what the requestor can do with the data
- Constraints on publishing sensitive or personally identifiable data.
Related Pages
Click here for pages that link to this topic.