You will all be aware of GDPR, and you may have gone through CUREC for your research project(s); therefore you know we all must take care when working with personal data. If you’re not sure whether you have personal data or what to do with it, please visit Research Support’s pages on ‘Responsibilities under GDPR’ for more information.
The service, and the SDS platform provided by Figshare, have been assessed as a secure and appropriate solution for storing research data containing personal information, however, the SDS service expects users to stick to the GDPR provisions when storing, sharing & working with data on Figshare.
Research Data is stored on a cloud-based system using Amazon Web Services based in the European Union and adhering to all requirements of the General Data Protection Regulation (however, this doesn’t mean you are not obliged to meet your responsibilities under GDPR when using data on the service).
Access to the SDS Platform is managed by user's Oxford Single Sign On (SSO) accounts and personal data shared with Figshare is limited to essential credentials for users to create and access accounts on the platform, which is consistent and in line with the relevant details in 'Section I) Data sharing with third parties' of the University of Oxford's Staff Privacy Policy.