HOW WE CURATE DATA STANDARDS AND TOOLS
OUR INFORMATION SECURITY STANDARDS
Since 2010, the UK Data Archive, the organisation that houses and hosts the data based at the University of Essex, has been certified under the international ISO 27001 standard for information security.
Most recently, in March 2015, the Archive achieved certification to the revised standard ISO27001:2013.
A number of government departments have also carried out surveillance visits to the Archive to clarify our information security regime. Our Information Security Management System supports all aspects of digital curation carried out in-house, such as the selection, acquisition, ingest, archiving, provision of access to data, and the management and planning of digital curation.
The ISO certification allows us to handle secure data on site and supports secure remote access to these research-rich data. In house, data are classified according to their level of detail, sensitivity and confidentiality and appropriate data handling and access safeguards are in place.
Security is further enhanced by:
- all staff and others who access the Archive's network signing a non-disclosure agreement
- staff who access very sensitive information undergoing a Disclosure Scotland check.