Last modified by melissargos on 2024/10/11 18:12
From version 26.1
edited by melissargos
on 2024/10/11 18:12
Change comment: There is no comment for this version
To version 20.1
edited by melissargos
on 2024/10/11 17:50
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -16,7 +16,6 @@
16 16  
17 17  * HIP User Account creation
18 18  * GDPR compliant data processing on the HIP
19 -* Data Governance Principles
20 20  * HIP GDPR compliance assessment
21 21  
22 22  [[image:image-20241008135218-1.png]]
... ... @@ -23,26 +23,28 @@
23 23  
24 24  //**Figure 1:** Landing page of the Human Intracerebral EEG Platform HIP//
25 25  
25 +
26 26  == HIP User Account creation ==
27 27  
28 28  **Prerequisite – Step 1**: Access to the HIP requires a registered **EBRAINS user account**, which needs to be permitted and authenticated. EBRAINS user accounts are available to users with a legitimate interest (mainly research and development) from Europe and beyond.
29 29  
30 -Request an EBRAINS user account: [[https:~~/~~/www.ebrains.eu/page/sign-up>>url:https://www.ebrains.eu/page/sign-up]]
30 +**Request an EBRAINS user account**: [[https:~~/~~/www.ebrains.eu/page/sign-up>>url:https://www.ebrains.eu/page/sign-up]]
31 31  
32 32  The HIP endeavours to comply with national and international laws and regulations, comprising principles such as intellectual property rights and the protection of privacy, ethical considerations and security regulations when designing rules and conditions for Access and the use of the platform.
33 33  
34 -**Platform Access – Step 2 : **Only **EBRAINS authorised Users** can request access to the HIP. Currently, accreditation for this access is managed by the CHUV Leadership, oversight is granted by the Data Governance Steering Committee.
34 +**Platform Access – Step 2 : **Only **EBRAINS authorised Users** can request access to the HIP. In the initial phase, accreditations are managed by the CHUV Leadership, oversight is granted by the Data Governance Steering Committee.
35 35  
36 -Before the User tries to **log into the HIP** **with their EBRAINS account** he **HAS TO** request HIP accreditation by contacting either EBRAINS support at [[support@ebrains.eu>>path:mailto:support@ebrains.eu]], who will forward the request to the HIP team, by contacting directly [[support@thehip.app>>path:mailto:support@thehip.app]], which is the HIP specific support email or alternatively, or by contacting the HIP team via the EBRAINS website: [[https:~~/~~/www.ebrains.eu/tools/human-intracerebral-eeg-platform>>url:https://www.ebrains.eu/tools/human-intracerebral-eeg-platform]]
36 +The User tries to **log into the HIP** **with their EBRAINS account** and then **HAS TO** request access to the HIP by contacting either EBRAINS support at [[support@ebrains.eu>>path:mailto:support@ebrains.eu]], who will forward the request to the HIP team, by contacting directly [[support@thehip.app>>path:mailto:support@thehip.app]], which is the HIP specific support email or alternatively, or by contacting the HIP team via the EBRAINS website: [[https:~~/~~/www.ebrains.eu/tools/human-intracerebral-eeg-platform>>url:https://www.ebrains.eu/tools/human-intracerebral-eeg-platform]]
37 37  
38 -Accredited users access the HIP through a web-based interface** [[https:~~/~~/thehip.app/login>>https://thehip.app/login]]**, which will provide them with access to all the available tools and relevant own or shared data.
38 +Users are mandated to accept the **HIP Terms of Use** and are required to accept the **EBRAINS Terms and Policies** [[https:~~/~~/www.ebrains.eu/page/terms-and-policies>>url:https://www.ebrains.eu/page/terms-and-policies]], to indicate acceptance and compliance with all applicable laws, regulations, rules, and approvals in the use and sharing of the data, including, but not limited to, the General Data Protection Regulation (GDPR).
39 39  
40 -Upon login, users are mandated to accept the **HIP Terms of Use** and are required to accept the **EBRAINS Terms and Policies** [[https:~~/~~/www.ebrains.eu/page/terms-and-policies>>url:https://www.ebrains.eu/page/terms-and-policies]], to indicate acceptance and compliance with all applicable laws, regulations, rules, and approvals in the use and sharing of the data, including, but not limited to, the General Data Protection Regulation (GDPR).
40 +Accredited users access the HIP through a web-based interface [[https:~~/~~/thehip.app/login>>https://thehip.app/login]], which will provide them with access to all the available tools and relevant own or shared data.
41 41  
42 42  == GDPR-compliant Data Processing on the HIP ==
43 43  
44 -(% style="height:1029px; width:834px" %)
45 -|(% style="width:5px" %) |(% style="width:882px" %)[[image:image-20241010130312-1.jpeg||height="987" width="806"]]
44 +(% style="width:878px" %)
45 +|(% style="width:5px" %)
46 +|(% style="width:5px" %) |(% style="width:882px" %)[[image:image-20241010130312-1.jpeg||height="974" width="796"]]
46 46  
47 47  **Figure 2: Data Flow on the HIP: **(% class="small" %) //This diagram depicts the different legal and regulatory steps to be taken to be allowed to upload data to the institutional private space of the HIP, the process of creating a collaborative project, and the step of putting anonymised data into the public space.//
48 48  
... ... @@ -85,7 +85,7 @@
85 85  
86 86  [[image:image-20241010130312-2.png||height="398" width="401"]]
87 87  
88 -(% class="small" %)//Illustration from:** **//[[(% class="small small small small small small small small small small small small small small" %)//GDPR - Back to Basics | URM Consulting//>>url:https://www.urmconsulting.com/blog/gdpr-back-to-basics#Section-3]]
89 +(% class="small" %)//Illustration from:** **//[[(% class="small small small small small small small small small" %)//GDPR - Back to Basics | URM Consulting//>>url:https://www.urmconsulting.com/blog/gdpr-back-to-basics#Section-3]]
89 89  
90 90  
91 91  Several aspects are crucial for demonstrating GDPR compliance. Hereunder is a compliance assessment for the HIP, based on the GDPR core principles:
XWiki.XWikiRights[3]
Allow/Deny
... ... @@ -1,1 +1,0 @@
1 -Allow
Levels
... ... @@ -1,1 +1,0 @@
1 -view
Users
... ... @@ -1,1 +1,0 @@
1 -XWiki.XWikiGuest
XWiki.XWikiRights[4]
Allow/Deny
... ... @@ -1,1 +1,0 @@
1 -Allow
Groups
... ... @@ -1,1 +1,0 @@
1 -XWiki.XWikiAllGroup
Levels
... ... @@ -1,1 +1,0 @@
1 -view