Storage of personal data
Personal data may be stored as long as approval has been granted by Privacy Services for research at Sikt, but must be stored securely.
- Data must be stored de-identified, i.e., research data and identifying elements (linking key) must be stored separately.
- If both data and the linking key are stored electronically, there is a requirement that these be stored in different areas, and the linking key must be specially secured. For encrypting files, NLA recommends the free program 7-Zip, which can be downloaded directly from the manufacturer's website. Once the file is encrypted, it can only be read and modified by those who know the password. Therefore, be careful not to lose information due to loss of password. Good protection is not achieved when the document and password are stored in the same place. If the document is to be distributed via email, it is best to share the password over another channel, e.g., via SMS or telephone.
See guide on how to encrypt here (from UiO) - Ordinary personal data is stored on OneDrive, the linking key must be encrypted/password protected. Academic staff can also use storage in Teams by using a closed Teams group and the correct classification for encrypting Office 365 files. For encrypting audio files, NLA recommends the free program 7-Zip (see above).
- Sensitive personal data must be stored on TSD 2.0 (Services for Sensitive Data), with which NLA Høgskolen has entered into an agreement. Initially, only academic staff can use storage on TSD 2.0. Here, the research secretariat at NLA Høgskolen must be contacted in advance: FoUsekretariat@nla.no.