Skip to content

Notes on Security Measures Needed for Scientific Research

Level What needs to be secured Examples
HIPAA-regulated Data PHI must be secured; patient confidentiality must be assured. Information about a diagnosis. Many many other pieces of data are considered PHI as well.
IRB-regulated Data Subject confidentiality must be assured. Results of a survey administered by a grad student. Mechanical Turk data.
Unregulated Data Significant harm to another will not occur if there is a breach. Astronomy data. Physics data. Anything that is not human subject research.