In this video, presenters Maria Rehbinder (Senior Legal Counsel at Aalto University and Certified Information Privacy Professional) and Marlon Domingus (Data Protection Officer at Erasmus University Rotterdam) look at how General Data Protection Regulation (GDPR) relates to research data management. The focus is on the lawful bases for processing data (in particular Article 6.1e) and protections for ‘academic expression’ as outlined in Article 85 of the GDPR .
GDPR raises the standard required of researchers handling personal data. For researchers, it is still essential to be aware of and follow the best practices in their field or discipline. In addition, researchers now need to also identify the appropriate legal basis for data processing.
Researchers will need GDPR compliant data management plans and/or arrangements in order to meet the other data processing and security principles. Researchers will also need to ensure that they supply all information required by Article 13 and Article 14 to research participants, explaining how participants personal data will be used in the project.