Deciding where to archive

You should adhere to the following principles when you archive your data:

  • Apply the FAIR principle.
  • Always at least archive your data at your UMC.
  • You should register any data that is archived outside your UMC (e.g., at an international data service or domain repository) at your UMC.

Frequently Asked Questions

Cloud storage is a model of data storage where the digital data is stored in logical pools. The physical storage spans multiple servers (and often locations). The physical environment is typically owned and managed by a hosting company. These cloud storage providers are responsible for keeping the data available and accessible, and the physical environment protected and running. People and organisations buy or lease storage capacity from the providers to store user, organisation, or application data.

In spite of a lot of debate, cloud storage is technologically as safe as (if not safer than) local storage. Organisationally, cloud storage is more demanding with respect to data security. As the physical location of cloud storage is often not transparent, legislation of other countries may apply (e.g., the infamous American Patriot Act). The same may be the case if the cloud storage provider is a foreign company.

The opinion of the 'College voor Bescherming Persoonsgegevens' (CBP) is:

When making an agreement for cloud services, you have to check whether the applicable legal rules have been met. If necessary, you have to make additional agreements with providers. This applies at least to the security of personal data that are in the cloud.

EU regulation: ARTICLE 29 DATA PROTECTION WORKING PARTY, 01037/12/EN WP 196: Opinion 05/2012 on Cloud Computing, Adopted July 1st 2012: 'The risks need to be carefully assessed by public bodies and private enterprises when they are considering engaging the services of a cloud provider. Businesses and administrations wishing to use cloud computing should conduct, as a first step, a comprehensive and thorough risk analysis. A cloud provider that guarantees compliance with EU data protection legislation should be selected. Appropriate contractual safeguards should afford sufficient guarantees in terms of technical and organisational measures. The responsible client should verify whether the cloud provider can guarantee the lawfulness of any cross-border international data transfers'.

For frequently obtained data types, you should consider submitting your data to worldwide archives (repositories).

There are general data repositories as well as domain specific repositories for (for instance) genomics and microarray data:

Text in preparation

Text in preparation