Register research in which AU is data controller

Here, you can register your research project, where AU is data controller, to Aarhus University's record of research projects.

Guide

Here you can find a written guide on how to register your research via the notification form.

Instructions

Here you can find a copy of the instructions you receive after registration.

1. Introduction

To have your research registered in the AU record, we need information about you and your research purpose.

Please note that:

• It is your responsibility to ensure that the information is correct and in accordance with the actual circumstances of your research project

• In some cases, you will have to elaborate on the information you give us. This will be stated on the form.

• Your registration is only submitted once you have completed all parts of the registration form and clicked 'submit'. You will then receive a copy of the registration at the email address you provided on the form.

• Your project will not be registered until you have been assigned a serial number and received a confirmation letter from the register.

• The confirmation letter is only documentation that your project has been included in the AU record. It is not an approval of your research.

2. Contact Person

1. Name of contact person*

2. AU ID of contact person (example: AUXXXXXX)*

3. AU email address of contact person*

4. Faculty/unit*

5. Department/school/centre*

6. Internal file no./reference (e.g. local project number, Statistics Denmark project number etc.)

3. Project information

7. Project title*

8. Purpose of the project*

9. Is it a main project or a sub-project (sub-study)?*

Main project (go to question 10)

Sub-project (sub-study) (fill in question 9a)

(9a) State the title and serial number of the main project

10. Start date for processing personal data*

11. End date for processing personal data*

When evaluating how long you will need to process personal data, you must also include any possible storage period according to the rules in other legislation or, for example, the rules on the responsible conduct of research. Document your evaluation and store it with your other project material.

5. Data sources and security

Data sources

State the data sources in your research project. State where you collected the personal data.

18. Which data sources are you using?*

From the data subject (the person whose data is being processed)

From the data subject and other sources (elaborate in question 18a below)

From sources other than the data subject (elaborate in question 18a below)

18a. Elaborate

Security of processing

The measures you should take to protect personal data depend on the type of data in question, the numbers involved, and who you process data about. Example:
• Technical measures, such as storing the data on a secure server, encryption and pseudonymisation.
• Organisational measures, such as rights management and training.

19. What measures have you taken/are you planning to take to protect the personal data?*

6. Sharing

State here whether you need to share personal data with others who are not employees at AU. Remember that you must have an agreement with the party with whom you will be sharing personal data. The Technology Transfer Office (tto@au.dk) can help you negotiate the agreement. Contact them well in advance of the start of the project.

If you are using a research machine, for example the research machine at Statistics Denmark, note that you are using a data processor for AU. The same applies for other suppliers, e.g. Rambøll when using SurveyXact.

20. I will be sharing personal data with:*

One or more independent data controllers (elaborate in question 21)

One or more joint data controllers (elaborate on question 22)

One or more data processors (elaborate in question 23)

I will not be sharing personal data with anyone outside AU (go to tab 7 authorisation requirements)

21. State the independent data controller(s)

22. State the joint data controller(s)

23. State the data processor(s)

24. State the agreement number(s)

8. Basis for processing

Processing personal data requires that you have a valid legal basis for processing the data (legal authority).

28. On what legal basis are you processing personal data?*

Scientific research purpose (section 10 of the Danish Data Protection Act with Article 6(1)(e) and Article 9(2)(j) of the General Data Protection Regulation, or Article 6(1)(e) of the General Data Protection Regulation.

Valid consent to data processing given by the data subject under data protection law (Article 6(1)(a) and/or Article 9(2)(a) with Article 6(1)(a) of the General Data Protection Regulation).

Other (elaborate in question 28a below)

28a. Elaborate

Other lawful purposes of the processing of personal data

In some cases, you may have several lawful purposes for the processing of personal data, such as research, education or dissemination. If so, answer question 29.

29. Do you have any other lawful purposes than the research purpose for the processing of personal data?*

Yes, (answer questions 29a and 29b)

No (go to the next tab)

29a. What is/are your other purpose(s) in relation to the processing of personal data?

29b. What is/are your legal basis/bases in relation to the processing of personal data?

Don't fill this field!

Here, you can register your research project, where AU is data controller, to Aarhus University's record of research projects.

Guide

Instructions

Register a research project for which AU is data controller (pID: 1443382)

Please note that:

Data subjects

Types of personal data

Data sources

Security of processing

Third country or international organisation

Biological material

Publishing personal data

Other lawful purposes of the processing of personal data

Do you need help?