Data protection and information security

Research data must be kept securely at all times, especially when collected in the field before being transferred back to Oxford Brookes University.

Laptops and other devices should be password protected and data files encypted. Data may be stored in Google Drive, for which the University has a security agreement.

User guide to file encryption

May 2018 saw the introduction of the EU General Data Protection Act (the ‘GDPR’), the biggest change to data protection legislation for nearly 20 years. GDPR has now been passed into UK law as the 2018 Data Protection Act and guidance is available to provide an overview of its implications for academic research and what practical steps must be taken to ensure compliance.

Further information about research data management is available on the research support webpages.

Oxford Brookes University recognises that information and its associated processes, systems and networks are valuable assets and that the management of personal data has important implications for individuals. Through its security policies, procedures and structures, the University will facilitate the secure and uninterrupted flow of information, both within the University and in external communications. The University believes that security is an integral part of the information sharing which is essential to academic and corporate endeavour.

Guidelines for informed consent

• Data protection & privacy at Oxford Brookes: Considerations for research
• Download participant information sheet template
• Download consent form template
• Download privacy notice template