Processing Data for Research Purposes
Further guidance on the use of personal data in research is available in Section 6 of the Data Protection Code of Practice.
Data Protection: Researchers' Guidance
Respect for confidentiality is essential to maintain trust between the public and those engaged in research. All researchers intending to use personal data must comply with the requirements of data protection legislation, the University's Data Protection Code of Practice and any associated guidance. This guidance covers the data protection issues researchers should take into account and the actions to take to be compliant.
Whilst the University provides a generic Privacy Notice for Research this does not take the place of the project specific Privacy Notice that must be provided to participants.
Please read the guidance and complete the Researcher's Checklist, Oath of Confidentiality (if you are not an employed researcher who has signed an employment contract e.g. research postgraduate) and Privacy Notice. The checklist and oath are required internally by the supervisor, PI and/or Ethics Committee. The Privacy Notice must be provided to participants along with their participant information.
Research and Data Protection guidance
Researcher's Rapid Assessment PIA and Privacy Notice template
Undergraduate and Taught Postgraduate Research / Dissertations
Please see: https://staff.napier.ac.uk/services/governance-compliance/governance/DataProtection/Pages/StudentAdvice.aspx
Students processing personal data for the purposes of undertaking their studies do so for their own personal purposes e.g. as part of their degree course dissertation. The student makes their own decisions about what work they will do, how this will be done and presented in their final submission, and therefore works on behalf of themselves and not the University. Whilst supervisors can advise on good research practice and data protection issues, and make suggestions about how the research is conducted, the final decision lies with the student. The University only becomes the Data Controller once the work is submitted.
Practical guidance is available here: UG Dissertation & TPG Research Data Protection Advice
Further guidance is available from JISC https://www.jisc.ac.uk/guides/research-data-management
The European Commission's guidance on Ethics and Data Protection is available here: http://ec.europa.eu/research/participants/data/ref/h2020/grants_manual/hi/ethics/h2020_hi_ethics-data-protection_en.pdf
All students conducting research at Edinburgh Napier University which involves processing personal data must directed to these intranet pages (Data Protection for Research), and sign an oath of confidentiality in relation to personal data to which they will have access in the course of their studies. This form should be retained by the area in which the research is being conducted for the period end of studies with the University plus 6 years.
Download the Oath of Confidentiality Form for Research Students
Page updated 20 January 2020