Sensitive research data classification tool
The goal of the °Ä¿Í¾º²Ê research data sensitivity classification tool is to help °Ä¿Í¾º²Ê researchers to identify, understand, and better manage research data in ways that are consistent with laws, disciplinary norms, and funder and institutional policies. This classification must always be used in conjunction with all additional compliance requirements applicable (e.g., Research Ethics Board requirements, contracts, agreements, applicable laws, ethical conduct, etc.).
All members of the university community are required to:
- comply with all applicable obligations in their research context;
- use sensitive human participant data only for the purposes for which they are collected;
- respect any restrictions for their use, and;
- collect, store, and dispose of data in ways appropriate to minimize the risk of unintended disclosure or compromised data integrity.
There are four levels in this data sensitivity classification. For descriptions and examples of each level of data sensitivity, please use the tabs on the left.
If you have questions about this tool or require support in determining the sensitivity of or safeguarding your research data, please reach out to the DRS team at drs [at] mcgill.ca.
Ìý
Cloud Directive
When (web-based software where data is sent outside of °Ä¿Í¾º²Ê's network), the proper level of data sensitivity must be determined. Data with different levels of sensitivity can co-exist within the same research project. To evaluate the appropriateness of a Cloud service, researchers must determine the highest sensitivity level of the data that will be sent, stored, processed, or managed on this Cloud service.
Very high sensitivity
Description: The unauthorized disclosure, alteration, unavailability, or destruction of the research data could cause critical harm to the research participants, °Ä¿Í¾º²Ê, and/or its affiliates. Mos