Privacy Issues and Policies

Working together to align the global networkAn independent, community effort to standardize researcher identification

Privacy Issues and PoliciesORCID Outreach Meeting, Cambridge, MAMay 17, 2012

Bernie RousACM Director of Publications

ORCID Board of Directors


OUTLINE ORCID Principles: Openness/Privacy

ORCID as Registry/Profiling System

ORCID Record Elements

International Privacy Regulations

User Settings for Managing ORCID Record

ORCID Policy


ORCID PRINCIPLES:Openness and PrivacyPrinciple #6: Researchers will control the defined privacy settings of their own ORCID profile data.

Principle #7: All profile data contributed to ORCID by researchers or claimed by them will be available in standard formats for free download (subject to the researchers' own privacy settings) that is updated once a year and released under the CC0 waiver.


ORCID IS A REGISTRY AND RECORD• ORCID As Registry System

– Generate and maintain unique IDs for researchers and scholars– Proliferate ORCIDs in scholarly systems– Enable linking of data sets related to research activities– Stimulate third party applications

• ORCID as Record System– Reduce form-filling burden for individuals– Enable auto-updates for a variety of digital assets– Improve data accuracy and completeness


ORCID RECORD ELEMENTSFocus is on professional data • Name

• Email

• Organizational affiliation(s)

• Digital assets: Publications, patents, grants, employment

• Other IDs (LDAP, VIVO, etc.)


DATA PRIVACYPublicly available data has different privacy constraints when aggregated into a published collection like an ORCID Profile

Constraints are both legal and cultural.

ORCID is concerned with both.


PRIVACY REGULATIONS US

• Evolving law and expectations with patchwork of laws and regulations.

EU Data Protection Directive 1995

• Implemented in different laws by 27 countries

• Requires researcher opt-in

• Vis-à-vis ORCID, requires depositor to warrant rights and indemnify


PRIVACY CONTROL SETTINGSResearcher has full control over the privacy control settings available for each element in the record he or she claims. To allow for updates, deletions, and corrections, the researcher can edit fields.


RECORD PRIVACY SETTINGSPrivate• Not shared publicly, but may be used by the system

Limited Access

• Shared only with designated parties

Public• Released annually under CC0 Waiver• Available to public via the ORCID UI• Available to ORCID members via API


ORCID POLICIES• Public User Agreement – governed by CC0

license

• Researcher Agreement – defining rights of researcher and responsibilities of ORCID

• Member Agreement – for depositing or using data obtained via ORCID API Services

• Conflict Resolution Mechanism and Policy - including ORCID actions upon data breach


ACKNOWLEDGMENTSThanks to VIVO team at Cornell

• Jon Corson-Rikert (Development Lead for VIVO), Cathy Chian, Brian Lowe, Simeon Warner

Thanks to Data Privacy Seminar participants at Harvard

• Latanya Sweeney (Director Data Privacy Lab at Harvard), David Abrams, Joe Pato, Vashek Matyáš, Fuming Shih, Merce Crosas, Salil Vadhan

Thanks to all on the ORCID Privacy Committee:

• Micah Altman, Geoff Bilder, Amy Brand, Jackie Ewenstein, Martin Fenner, Lisa Schiff, Chris Shillum, Mike Taylor

Privacy Issues and Policies

Documents

Transcript of Privacy Issues and Policies