3.3 Ensuring data security

Governance and ethical requirements will also provide guidance on how data should be stored securely. For health-related data, data security measures should be put in place that ensure that only authorised users can access data. These measures will vary depending on the data management system used. For example, when data are collected in spreadsheets, this includes measures such as password protection, restricted access to computers where the data are stored. For electronic information systems, more advanced measures are put in place, which require the guidance of experts in the domain. Data should also be automatically backed up in multiple locations, to allow recovery of as much data as possible in case of loss of or damages to the primary data repository.