Safe settings look at understanding the importance of secure environments when accessing data, and ways to protect your setting.
Examples of questions/issues being addressed:
- How is the data stored?
- Are there physical restrictions on the users?
- Does IT prevent unauthorised use?
- Are mistakes by authorised users likely to be detected?
There are many data management options. This Briefing Note explain different options, using a concept called the Data Access Spectrum.
Since the start of the 21st century, much of the interest has been in Trusted Research Environments (TREs). They are secure digital platforms that provide controlled access to sensitive or confidential data for research purposes. They are designed to minimise the risk of data breaches or misuse while allowing approved research to safely analyse data safety. The Office for National Statistics (ONS) Secure Research Service, the UK Secure eResearch Platform (UKSeRP), and the UK Data Archive’s SecureLab are large examples of TREs. More information about TREs can be found in these Briefing Notes.
Possible ways to achieve safe settings:
- Using Trusted Research Environments (TREs), for example, ONS Secure Research Service or UK Data Service
- Using air-gapped systems; offline environments where data cannot be downloaded
- Screen monitoring could prevent screenshots or unauthorised copying
- Data Loss Prevention (DLP) tools block unauthorised transfers (i.e. USB restrictions)