Research data privacy
The Research Data Privacy Program provides research data privacy support for VCU’s Office of Research and Innovation. The university has an official privacy statement, that outlines basic guidelines for privacy at VCU. This webpage provides additional guidance and contains general information for compliance with the European Union privacy law known as the General Data Protection Regulation (GDPR).
What is the GDPR?
The GDPR establishes rules relating to the protection of natural persons with regard to the processing of personal data and rules relating to the free movement of personal data. It also protects the fundamental rights and freedoms of natural persons and in particular their right to the protection of personal data.
If you are collecting data about a natural person in the European Economic Area (the E.U., Iceland, Liechtenstein and Norway) please contact VCU’s Research Privacy Officer.
GDPR flowchart - "Does GDPR apply to my research data?"
GDPR - this page contains a hyperlinked version of the GDPR text.
Examples of types of data covered under the GDPR:
- Basic identity information such as name, address and ID numbers
- Web data such as location, IP address, cookie data and RFID tags
- Health and genetic data
- Biometric data
- Racial or ethnic data
- Political opinions
- Sexual orientation
Research privacy forms
If you think GDPR may apply to your research, please complete the GDPR Survey.