Through Duke’s Office of Research Initiatives, DUPRI provides access to and support for the use sensitive or regulated data for their research. Protected data is classified as sensitive or restricted by the Duke Data Classification Standard, and includes many types of identifiable or proprietary data, for example health records, internal business records, longitudinal studies, educational records and data regulated by various laws and standards such as NIST 800-171, GDPR or Export Controls.
Administrative and regulatory services for projects with sensitive data are provided by the Office of Research & Innovation. We assist researchers across the institution in assessing the need for, and coordinating to obtain, research approvals and documents (including Data Use Agreements (DUAs), Data Management Plans (DMPs), and IRB protocols). We also help verify that Duke can adequately meet the administrative and technical requirements of both the university and data providers.