official blog

Data Use Agreement De-Identified

For more information on data sharing with other reviewers with several specific examples, see the NIH data-sharing work folder. This document also examines what should be included in the protocol when sharing data with other auditors is part of the research plan. A Data Use Agreement (AEA) is an agreement that is required and must be entered into in accordance with the data protection rule before a limited data set (defined below) is used or disclosed to an external institution or an external party. A limited set of data remains health information (PHI) and that`s why covered companies, such as Stanford, must enter into a data usage agreement with each recipient of a limited set of Stanford data. Clause 164.512 of the data protection rule also defines the specific uses of PHI and the disclosures that a covered company may make for searches without authorization, waiver or modification of the data authorization or agreement. These limited activities are the use or disclosure of the research preparation PHI and the use or disclosure of PHI with respect to search fraudsters. If the agreement submitted is a research cooperation agreement or an agreement for a department-funded project in which the sponsor needs the agreement to cover the extended terms and conditions, please send a modifiable version of the agreement with a UAB Extramural support checklist and an original/new RPL version. An agreement on the use of data is the means by which the companies concerned receive satisfactory assurances that the recipient of the restricted data set will only use or disclose the PHI in the data set for specific purposes. Even if the person requesting a limited set of data from a seized unit is a staff member of the entity concerned or, in other ways, a staff member of the company concerned, there must be a written agreement between the entity entered and the recipient of a limited data set on the use of data in accordance with the requirements of the data protection rule.

The data protection rule describes the potential for the use or disclosure of PHI by covered companies, including for research purposes. As a general rule, the rule allows covered companies to use and disclose POs for research purposes, where the individual is authorized to do so in accordance with data protection rules.

Comments are closed.

Leave a Reply: