Privacy Impact Assessments for Digital Repositories

Abraham Mhaidli; Libby Hemphill; Florian Schaub; Jordan Cundiff; Andrea K. Thomer

doi:10.2218/ijdc.v15i1.753

Privacy Impact Assessments for Digital Repositories

Authors

Abraham Mhaidli School of Information, University of Michigan
Libby Hemphill Institute for Social Research, University of Michigan https://orcid.org/0000-0002-3793-7281
Florian Schaub School of Information, University of Michigan https://orcid.org/0000-0003-1039-7155
Jordan Cundiff School of Information, University of Michigan
Andrea K. Thomer School of Information, University of Michigan http://orcid.org/0000-0001-6238-3498

DOI:

https://doi.org/10.2218/ijdc.v15i1.753

Abstract

Trustworthy data repositories ensure the security of their collections. We argue they should also ensure the privacy of researcher and research subject data. We demonstrate the use of a privacy impact assessment (PIA) to evaluate potential privacy risks to researchers using the ICPSR’s Researcher Passport as a case study. We present our workflow and discuss potential privacy risks and mitigations for those risks.

[A previous version of this article is available as an IDCC2020 Conference Paper]

Downloads

Published

2022-05-10

Issue

Vol. 16 No. 1 (2021)

Section

Research Papers

License

Copyright for papers and articles published in this journal is retained by the authors, with first publication rights granted to the University of Edinburgh. It is a condition of publication that authors license their paper or article under a Creative Commons Attribution 4.0 International (CC BY 4.0) licence.