Basic Requirements for Research Infrastructures in Europe

Similar documents
Data Management Checklist

TARGET2-SECURITIES INFORMATION SECURITY REQUIREMENTS

Trust and Certification: the case for Trustworthy Digital Repositories. RDA Europe webinar, 14 February 2017 Ingrid Dillo, DANS, The Netherlands

Developing a Research Data Policy

How can CLARIN archive and curate my resources?

European Open Science Cloud Implementation roadmap: translating the vision into practice. September 2018

Open Data Policy City of Irving

DATA-SHARING PLAN FOR MOORE FOUNDATION Coral resilience investigated in the field and via a sea anemone model system

GDPR: A QUICK OVERVIEW

Science Europe Consultation on Research Data Management

Ensuring Proper Storage for Earth Science Data: The USGS Process to Certify Trusted Digital Repositories

Certification. F. Genova (thanks to I. Dillo and Hervé L Hours)

GEOSS Data Management Principles: Importance and Implementation

28 September PI: John Chip Breier, Ph.D. Applied Ocean Physics & Engineering Woods Hole Oceanographic Institution

CHAPTER 13 ELECTRONIC COMMERCE

Data Management Dr Evelyn Flanagan

CERTIFICATION BODY (CB) APPROVAL REQUIREMENTS FOR THE IFFO RESPONSIBLE SUPPLY (IFFO RS) AUDITS AND CERTIFICATION

GDPR Processor Security Controls. GDPR Toolkit Version 1 Datagator Ltd

A Practical Look into GDPR for IT

Data Processing Agreement

Agenda. Bibliography

Privacy Policy. Information about us. What personal data do we collect and how do we use it?

Draft Applicant Guidebook, v3

Information technology Security techniques Information security controls for the energy utility industry

A Homeopath Registered Homeopath

ISO / IEC 27001:2005. A brief introduction. Dimitris Petropoulos Managing Director ENCODE Middle East September 2006

Legal Issues in Data Management: A Practical Approach

Version 1/2018. GDPR Processor Security Controls

Archive Legislation: archiving in the United Kingdom. The key laws that affect your business

Information technology Security techniques Requirements for bodies providing audit and certification of information security management systems

DATA MANAGEMENT PLANS Requirements and Recommendations for H2020 Projects. Matthias Razum April 20, 2018

Building Information Modeling and Digital Data Exhibit

Guardian Electrical Compliance Ltd DATA PROTECTION GDPR REGULATIONS POLICY

Advent IM Ltd ISO/IEC 27001:2013 vs

The City of Mississauga may install Closed Circuit Television (CCTV) Traffic Monitoring System cameras within the Municipal Road Allowance.

POWER AND WATER CORPORATION POLICY MANAGEMENT OF EXTERNAL SERVICE PROVIDERS

This Privacy Policy applies if you're a customer, employee or use any of our services, visit our website, , call or write to us.

Vaccine data collection tool Oct Functions, Indicators & Sub-Indicators

Privacy Policy GENERAL

Contract Services Europe

Motorola Mobility Binding Corporate Rules (BCRs)

April Appendix 3. IA System Security. Sida 1 (8)

Economic and Social Council

DATA PRESERVATION AND SHARING INITIATIVE. 1. Aims of the EORTC QLG Data Repository project

Baseline Information Security and Privacy Requirements for Suppliers

Terms of Use. Changes. General Use.

This procedure sets out the usage of mobile CCTV units within Arhag.

UNIFORM STANDARDS FOR PLT COURSES AND PROVIDERS

Fair data and open data: differences and consequences

Swedish National Data Service, SND Checklist Data Management Plan Checklist for Data Management Plan

Policy. London School of Economics & Political Science. Remote Access Policy. IT Services. Jethro Perkins. Information Security Manager.

Checklist: Credit Union Information Security and Privacy Policies

Data Protection. Code of Conduct for Cloud Infrastructure Service Providers

Legal notice and Privacy policy

PS Mailing Services Ltd Data Protection Policy May 2018

INGSA Research Associate Grant Agreement. General Terms and Conditions of the Grant Agreement

What You Need to Know About Addressing GDPR Data Subject Rights in Pivot

Cybersecurity eit. Software. Certification. Industrial Security Embedded System

Commission Action Plan on Environmental Compliance and Governance

When you submit material to the Lest We Forget project you are accepting and consenting to the practices described in this policy.

ISO/IEC INTERNATIONAL STANDARD. Software engineering Software measurement process. Ingénierie du logiciel Méthode de mesure des logiciels

NIS Directive : Call for Proposals

RMU-IT-SEC-01 Acceptable Use Policy

Scientific Research Data Management Policy

EXAM PREPARATION GUIDE

Cybersecurity. Quality. security LED-Modul. basis. Comments by the electrical industry on the EU Cybersecurity Act. manufacturer s declaration

National Diploma in Building Control Surveying (Medium and Large Buildings) (Level 6)

Data Processing Clauses

Client for Contractors (C4C) Security Agreement - Standard

Checklist and guidance for a Data Management Plan, v1.0

General Data Protection Regulation

The Open Group Certification for People. Certification Policy. for Examination-Based Programs

DATA PRIVACY & PROTECTION POLICY POLICY INFORMATION WE COLLECT AND RECEIVE. Quality Management System

This document is a preview generated by EVS

Washington State Emergency Management Association (WSEMA) Olympia, WA

COMPUTAMATRIX LIMITED T/A MATRICA Data Protection Policy September Table of Contents. 1. Scope, Purpose and Application to Employees 2

Cognizant Careers Portal Terms of Use and Privacy Policy ( Policy )

TERMS AND CONDITIONS FOR THE USE OF THE WEBSITE AND PRIVACY POLICY

Data Protection Policy

IT Governance ISO/IEC 27001:2013 ISMS Implementation. Service description. Protect Comply Thrive

National Diploma in Building Control Surveying (Small Buildings) (Level 5)

NEWCASTLE CLINICAL TRIALS UNIT STANDARD OPERATING PROCEDURES

Acceptable Use Policy

Wye Valley NHS Trust. Data protection audit report. Executive summary June 2017

DATA SELECTION AND APPRAISAL CHECKLIST University of Reading Research Data Archive

UWTSD Group Data Protection Policy

Data management Backgrounds and steps to implementation; A pragmatic approach.

Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation 2016/679

National Data Sharing and Accessibility Policy-2012 (NDSAP-2012)

THE NEW GENERAL DATA PROTECTION REGULATION IMPLICATIONS FOR ENTERPRISES. Forum financier du Brabant wallon

2.4. Target Audience This document is intended to be read by technical staff involved in the procurement of externally hosted solutions for Diageo.

Made In Hackney Data Protection Policy Last Updated:

Information Technology Security Plan Policies, Controls, and Procedures Identify Governance ID.GV

ADIENT VENDOR SECURITY STANDARD

Research Infrastructures and Horizon 2020

Chartered Membership: Professional Standards Framework

Strasbourg, 21 December / décembre 2017

The Common Controls Framework BY ADOBE

Consolidated Privacy Notice

Ferrous Metal Transfer Privacy Policy

Transcription:

Dated March 2011 A contribution by the working group 1 Access and Standards of the ESF Member Organisation Forum on Research Infrastructures. Endorsed by the EUROHORCs on 14 April 2011.

Introduction This document and the requirements listed herein aim at identifying a minimum quality standard for access to research infrastructures (RIs) at the European level. The criteria and issues identified in Part I are independent of the size or kind of RI under consideration. Part II contains specific requirements addressing access to instrumentation and access to data bases / repositories. The requirements described here are a consensus result of the Member Organisation Forum on Research Infrastructure 1 and as such can only be seen as a minimum quality standard that should provide orientation both to funders and to managers of RIs. The requirements are meant to provide a basis for the development of evaluation procedures, but they are not evaluation criteria by themselves. 2 More specific requirements cannot be made on this level as RIs of all kinds and all sizes are addressed. Not all aspects of establishing, managing or operating an RI are dealt within this set of requirements and recommendations, but rather those that have a direct impact on the external use. It is important to stress that this list is meant to be a first attempt at collecting relevant issues for the shared use of RIs and that it is anticipated that the ongoing European and national discussions on RI will lead to a continuous update and refinement. National agencies and European initiatives, first of all the ESFRI projects 3, have partly established or are currently developing specific access models and associated quality assurance procedures. It is hoped that this document is close to a common denominator for all of them and, thus, can also serve as a basis for new models or procedures to be established. The general requirements of this document are meant to be valid for all scientific disciplines and should, therefore, be applicable to all RIs. A common understanding of how RIs can optimally support scientific communities will certainly help in overcoming some problems of fragmentation and heterogeneity in Europe without sacrificing the benefits of diversity and flexibility. 1 See http://www.esf.org/activities/mo-fora/research-infrastructures.html 2 An illustrative example is the first requirement that asks for the description of an existing management structure, but does not contain any hints how to assess the answer provided by an RI the later being a part of the evaluation procedure. Only the existence of a management structure (and a description of it) is required, but no attempt is made at prescribing specific governance models. 3 See http://ec.europa.eu/research/infrastructures/index_en.cfm?pg=esfri-roadmap - 2 -

Contents Introduction Contents Technical Foreword Part I: Basic requirements for all RIs with shared access Management Good Scientific Practice and legal issues Information for potential users General information Information on the access model Part II: Specific requirements depending on the kind of RI: Access to instrumentation, possibly including investigation of samples Management Good Scientific Practice and legal issues Information for potential users Access to RIs that are data bases / data repositories - 3 -

Technical Foreword Basic requirements for shared access were grouped into the three categories management, regulations and information. The most important part is certainly the management section. One of the requirements under this heading is the definition of the access model. The relevant aspects of an access model are described later in the second information section where it is required that the RI must inform the potential users on all relevant aspects of the access model. The regulations part contains legal issues and good scientific practice and the necessity to adhere to these rules is self-evident. The general information part might seem trivial, but experience shows that by no means all facilities that offer external access do provide this basic information on their web pages. The specific requirements for access to instrumentation can be divided in a similar manner, and they constitute largely requirements in addition to the general case. For the data repositories the specific requirements are mostly more detailed and differentiated descriptions of general aspects, so that for data repositories they more or less replace the items L1, I4, I9 and I11 of the general list. This kind of structuring is foreseeing a procedure where the compliance of a facility with this set of requirements is to be checked. The information part can easily be transformed into a questionnaire where, for instance, for the individual aspects of the access model internet links can be required that point to the respective information on the RI web pages. The regulations part requires only the confirmation of the RI that they adhere to these requirements without further description. The management part, finally, would require some more detailed explanation of the RI to address these aspects. For access to instrumentation the same approach would apply, only with an expanded set of requirements. Data repositories might require a slightly different procedure. - 4 -

Part I: Basic requirements for all RIs with shared access Management M1 The management structure must be adequate for the size and kind of RI Dedicated (technical and administrative) manager are recommended for RIs with many projects/users M2 M3 Skilled staff, both scientific and technical, must support the RI and the user The RI has to define an access model that is consistently applied in sharing access with external users (cf. section Information on the access model). An explicit or implicit contractual relationship has to exist. Career options should be considered / supported. Training should be offered. The access model should be optimized for the needs of the users. Feed-back analysis should be made for all aspects including training. Signed agreements should define rights and responsibilities. M4 RIs have to be able to estimate their total costs RIs should be able to prove their total costs of providing access by full cost accounting. M5 The environmental impact of the RI is the responsibility of the RI management Good Scientific Practice and legal issues L1 L2 L3 L4 Use of a facility has to be acknowledged by the user in appropriate ways, e.g. in publications. RI must know and inform users about local (and other applicable) law and regulations relevant for access to the RI, also for incoming users from other countries. (Examples: In the country of the RI: Data protection laws, importing samples, ethical regulations, liability, licensing etc) The RI management is responsible for adequate safety measures and users must be informed and obliged to adhere. Applications for access must be treated confidential Co-authorship on publication or patents is only warranted when substantial scientific input contributes to the publication. Users should be obliged to inform RIs about publications and patents based on the use of the RI. RI can help users by collecting and presenting laws and regulations for the countries users come from. (Examples: In the country of the user: Data protection laws, export of samples, liability, licensing etc) - 5 -

Information for potential users General information I1 Detailed information is available via WWW All relevant information is both in English and national language(s) I2 General description of the RI examples of usage, publications I3 Contact details online submission of access requests Information on the access model I4 I5 I6 I7 I8 I9 I10 I11 I12 Availability at what times and with what service? Continuity of access and service in the future? Information about training and specific assistance, also for subsequent data analysis Definition to whom access is allowed (industrial research/users?) Are there costs for access? What cost models exist for public research, for industrial research? Description of the selection process for access requests: Who is doing it? What are the criteria? How long will it take? Handling of results from data management to publication has to be clearly described. Standardized data formats have to be supported. Expectations of the RI regarding citation or acknowledgement of the use of the RI. Responsibilities of owners and users need to be defined (e.g. for correctness, authenticity, storage, contribution and distribution of data) Treatment of intellectual property, data ownership, confidentiality (competition between scientific teams). - 6 - RI should offer reliable service with long term perspective Provision of training and specified assistance Granting access to the private sector is encouraged, but industry should pay at least the full operational costs Define the cost model and/or its available options No disclosure Agreements (NDA) might be linked to higher costs for using publicly funded RIs The procedure should be adequate for the size and type of RI. Confidentiality should be explicitly confirmed. Service and support with data handling (storage / access / transfer / processing) and presentation of models/examples is recommendable Clear policy on co-authorships by members of the RI RI should support quality control Presenting models or examples is helpful

Part II: Specific requirements depending on the kind of RI: Access to instrumentation, possibly including investigation of samples Management 1 2 If access is (physically) limited (e.g. access to instrumentation) and access requests compete, a fair and transparent selection procedure is needed. Facilities must provide basic laboratory space for sample preparation and/or immediate set-up Feasibility checks, e.g. by the RI management, are useful. A review panel (independent from the RI management) should decide in a fair and fast procedure on granting access to instrumentation. Constructive feedback should be given to declined applications Good Scientific Practice and legal issues 3 4 The sample has to remain the property of the experimental team; the RI management must guarantee returning samples unless they are destroyed during the measurements or the users give an explicit consent to a different procedure. Property and license rights about experimental arrangements made on the occasion of the investigation (sample environment, preparation, detection, data treatment, etc) have to be shared appropriately between the user and the RI team. The use of a MTA (Material Transfer Agreement) is recommended. Ideally, an agreement should be in place beforehand; In unexpected cases parties should convene and decide upon sharing of innovation paternity as soon as possible. Information for potential users 5 6 Facilities must inform the user about measurement conditions and in what form samples need to be prepared. Information on any training or assistance that is provided for sample preparation and instrument use Special attention should be given to the handling of harmful or hazardous material. Users should be informed and instructed, if applicable. Training and assistance should be provided 7 If physical presence is needed for access, RIs should inform users about possible accommodation Support for accommodation is commendable. In the case of publicly funded research infrastructures for scientific use the access for users from industry should not compromise scientific use. A time share of up to 10% is usually acceptable. - 7 -

Access to RIs that are data bases / data repositories No. Required 4 Recommended 1 The data repository ensures that research data is provided in suitable standardized formats and with sufficient information for others to assess the scientific and scholarly quality of the research data and compliance with disciplinary and ethical norms 2 The data repository ensures the integrity of the digital objects and the metadata 3 The data repository ensures the authenticity of the digital objects and the metadata 4 The data repository assumes responsibility for access to and availability of the digital objects Provisions for continuity of access and service in the future are described by the data repository. 5 The data repository defines access regulations respecting licenses, copyrights, personal data protection etc and obliges the data user to comply 6 The data repository enables the users to utilize the research data and refer to them 7 The data repository applies documented processes and procedures for managing data storage with defined workflows for archiving across the data life cycle. The data producer should be obliged to provide the required meta data 8 The data repository has a plan for long-term preservation of its digital assets stable funding should be secured 4 This list is largely derived from the list of requirements defined by the Data Seal of Approval (www.datasealofapproval.org). - 8 -

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback