Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
nshd:induction [30/08/2018 @ 11:22]
adammoore [Data Security Induction]
nshd:induction [12/02/2020 @ 09:12] (current)
adammoore
Line 3: Line 3:
 ==== Data Security Induction ==== ==== Data Security Induction ====
 ---- ----
 +
 +===New Users===
 +
 In order to access NSHD data, a security induction must be completed. This is to ensure that recipients understand the principles of secure data management and are aware of current legislation in this area. In order to access NSHD data, a security induction must be completed. This is to ensure that recipients understand the principles of secure data management and are aware of current legislation in this area.
  
Line 8: Line 11:
  
 Users will need to {{https://​portal.e-lfh.org.uk/​Register|register}} for an e-LfH learning account with their academic email address if they are not already registered. Users will need to {{https://​portal.e-lfh.org.uk/​Register|register}} for an e-LfH learning account with their academic email address if they are not already registered.
 +\\ \\ 
 +**Please note** that non-UK applicants may need to pay a fee to access the training module. This should be accounted for if your data request is part of a grant application.
 \\ \\  \\ \\ 
  
Line 13: Line 18:
  
 If you have already completed the Data Security Awareness training module (or an equivalent) in the past 12 months, please scan and send the certificate of completion. If you have already completed the Data Security Awareness training module (or an equivalent) in the past 12 months, please scan and send the certificate of completion.
-\\ +\\ \\ 
  
-{{nshd:​complete_assessment.jpg?300| Example completed assessment form}}  ​+{{nshd:​complete_assessment.png| Example completed assessment form}}  ​
  
 \\  \\ 
 ---- ----
 +
 + ​===Existing Users===
 +All UCL researchers with continuing access to study data are required to undertake annual training in Information Governance. For UCL staff this can be arranged [[https://​www.ucl.ac.uk/​isd/​itforslms/​services/​handling-sens-data/​training-and-awareness | here]].  ​
 +
 +Non-UCL staff who require continued access to NSHD datasets should also undertake similar training annually. ​
 +\\ 
 +
 +\\ 
 +**In addition you must be aware of and agree to the following restrictions that apply to NSHD data:**
 +
 +  - You must only store NSHD data inside secure University/​Organisation networks (with protected LANs, firewalls, file system ACLs etc).
 +  - Specifically you must not:
 +      - Take NSHD data home (or off to conferences etc.) on laptops or other portable devices
 +      - Store on publicly accessible computers or file systems
 +      - Store under other peoples'​ computer accounts ​
 +  - NSHD data must not be communicated to or from the LHA using any unencrypted media
 +    - Media includes laptops, portable hard drives, USB memory sticks, DVDs, mobile phones, etc. etc.
 +  - Only tested encryption products may be used to transport NSHD data.
 +    - We generally encode NSHD datasets using AES 256 bit encryption before we send it to you.
 +    - If in any doubt contact the LHA (([[mrclha.swiftinfo@ucl.ac.uk|LHA]] or [[philip.curran@ucl.ac.uk|Head of Data Services]]))
 +  - If any NSHD data is lost or is put in a situation where it may be disclosed to unauthorised people, you must immediately:​
 +    - Notify the LHA Director (Prof. Chaturvedi) and/or
 +    - Notify the LHA Head of Data Services (Phil Curran) ​
 +
 +\\ 
 +**Signing an [[nshd:​confform|NSHD Confidentiality Form]] indicates your acceptance of the above conditions.** ​ If you have any further questions, please [[mrclha.swiftinfo@ucl.ac.uk|contact us]].