The Danish Data Protection Agency has announced a written audit of Aarhus University’s practices in regard to how personal data is handled in research projects.
2020.11.04 |
By 1 December, Aarhus University must submit a report to the Danish Data Protection Agency describing how personal data is processed in connection with research projects. It must include a list of all ongoing research projects that involve personal data. In addition, the university must account for how personal data is stored and (where relevant) disclosed in connection with each project, both internally and with external partners.
After the Danish Data Protection Agency has reviewed the material AU has been directed to submit, the agency will select a number of research projects for a more comprehensive audit.
Individual researchers have an obligation to ensure that Aarhus University lives up to its responsibility to manage personal data in research projects correctly. And the university can help you as a researcher make sure your research project is in compliance with the law.
On AU’s website on data protection in research projects you will find information about how to ensure that the information on your research project in the university’s register is up-to-date and accurate.
You are also welcome to contact your local data protection coordinator if you have questions about registering your research project. Or you can contact Aarhus University’s data protection unit at dpo@au.dk if you have more general questions.