Recordings of the Webinar titled " General Data Privacy Regulations (GDPR): What does It Mean for Researchers?" is available in the following link:
Regulation (EU) 2016/679, the European Union’s new General Data Protection Regulation (‘GDPR’), regulates the processing by an individual, a company or an organisation of personal data relating to individuals in the EU.
Speakers Maria Rehbinder (Senior Legal Counsel at Aalto University and Certified Information Privacy Professional) and Marlon Domingus (Data Protection Officer at Erasmus University Rotterdam) discussed how GDPR relates to research data management. The focus is on the lawful bases for processing data (in particular Article 6.1e) and protections for ‘academic expression’ as outlined in Article 85 of the GDPR .
GDPR raises the standard required of researchers handling personal data. For researchers it is still essential to be aware of and follow the best practices in their field or discipline. In addition, researchers now need to also identify the appropriate legal basis for data processing.
Researchers will need GDPR compliant data management plans and/or arrangements in order to meet the other data processing and security principles. Researchers will also need to ensure that they supply all information required by Article 13 and Article 14 to research participants, explaining how participants personal data will be used in the project.