Introduction

This document describes the policy for research data & software management within the Faculty of Behavioural and Human Movement Sciences (FGB) and defines how the principles described in the VU Research Data and Software Management Policy (Version 3.0, 17-12-2024) are to be implemented at the faculty level.

The policy is also informed by the VSNU Code of Conduct for Research Integrity, the VSNU Code of Conduct on the Use of Personal Data in Scientific Research, the Federa Code of Conduct for Responsible Use of Human Tissue in Medical Research, the Federa Code of Conduct for the Use of Data in Health Research, the Standard Evaluation Protocol (SEP 2021-2027), ICH Good Clinical Practice Guidelines, the Medical Research with Humans Act (WMO), the Medical Treatment Agreement Act (WGBO), the General Data Protection Regulation (GDPR) and the national implementation of the GDPR (UAVG).

Data are defined within FGB and this policy as digital/digitizable information (spreadsheets or databases consisting of values representing quantitative or qualitative variables; audiovisual recordings; transcriptions; imaging data) and non-digitizable data (human or animal tissue samples, handwritten notes, paper consent forms) in so far as the non-digitizable data must be maintained in their original form for a certain period of time.

Purpose of this Policy

This policy supplements the VU Research Data & Software Management Policy by:

  1. Defining the roles and responsibilities within FGB regarding research data & software management

  2. Advising researchers on the balance between open science and data protection legislation

  3. Informing FGB researchers of FGB specific tools, guidelines and support services for research data management

Policy Principles

In addition to the points listed in the general VU Research Data & Software Management Policy, the following policy principles apply within FGB:

  1. Research data management is an essential component of every research project. This means:

    1. At a minimum, every new research project from the implementation date of this policy requires a data management plan if that project receives external funding.
    2. Ongoing longitudinal cohort studies are advised to implement data management plans if this has not already been done.
    3. Research projects without external funding are still advised, but not required, to complete data management plans.
    4. Data management plans should be updated whenever there are significant developments in a research project that impacts the collection, processing, analysis, storage, publication and/or deletion of the data.
  2. Data should be made accessible for reuse through the application of the FAIR principles, while also respecting the constraints of privacy, ethics, facilities, and finances.1

  3. Effective research data management skills and the FAIR-principles are essential elements in the education of PhD candidates and students following research-based Masters and Bachelors programs.

  4. Research data & software management requires teamwork within the faculty. Every individual should know their own responsibilities, but should also be aware of the support services available to them and make use of these services, as required.

  5. Pre-registration of a planned research project is an essential element of research integrity & transparency. All research projects that are required to complete a data management plan, must also pre-register their research at the outset of the research process. The pre-registration should also be updated whenever any changes to the research plan occur.2

Responsibilities

Researchers

  1. It is assumed that researchers know and apply the VSNU Scientific Code of Conduct for Research Integrity, the VSNU Code of Conduct on the Use of Personal Data in Scientific Research, the VU RDM Policy, and the FGB RDM policy. Researchers conducting research projects that fall under the purview of the WMO should also be familiar with the relevant legislation and codes of conduct as described by the CCMO and the VUmc METc.

  2. Researchers who work with personal data are required to understand and comply with the privacy requirements of the GDPR and UAVG and conduct their research in a manner that ensures that data privacy, confidentiality and integrity are maintained throughout the project

    1. Researchers are expected to comply with the requirements for a personal data processing register
    2. Researchers must ensure that students and interns working temporarily within FGB can work in a manner that meets all privacy requirements.3
    3. Students, interns and other individuals not officially working for VU Amsterdam, but for whom VU Amsterdam is responsible, must sign a confidentiality statement if they will be working with confidential and/or personal data.3
    4. Researchers who supervise research assistants and/or data managers must ensure that these individuals are sufficiently aware of their privacy requirements and that they are able to transport and/or access data securely when working remotely.4
  3. Researchers are responsible for determining who is allowed to access (some of) the research data both within the faculty and between institutions. Principal investigators, senior researchers, project coordinators and project leaders should assist junior researchers and interns with this determination; advice from the FGB privacy champion and/or FGB research data steward can be requested, in cases of uncertainty.

    1. Researchers are responsible for completing the appropriate agreements with external parties prior to starting a research project. These agreements may be related to privacy regulations5 and/or other legal concerns.
    2. Researchers must ensure they are allowed to use any data they have obtained from third parties.
      1. If data are obtained from a third party that did not actively share the data with the FGB researchers, the FGB researchers must ensure that they are allowed to use these data.
      2. If data obtained from a third-party are about human subjects, the researcher should confirm with the FGB privacy champion that they are allowed to use the data, regardless of whether the third party claims that the data are anonymous.
  4. Researchers are responsible for determining which documents (e.g. data management plans, data protection impact assessments, data classifications etc.) must be completed for their research project and for the completion of these documents early in the planning stages of their research

    1. The completion of documents may be delegated, but senior researchers (project leaders, project coordinators and, where applicable, department heads) are ultimately responsible for the content of these documents.
    2. All researchers and research assistants involved in a project should review and comply with the research data management plan. Researchers should seek advice from experts (1. data managers for the project, 2. the FGB research data stewards or 3. University Library RDM experts) when writing the data management plan so that potential problems and possible solutions can be identified prior to the commencement of the research project.
    3. Researchers should update documents as needed, as well as maintaining project-specific metadata (e.g. lab notes, logbooks, code/syntax/scripts for cleaning and analysing the data, codebooks etc.) throughout the research lifecycle.
    4. Researchers should instill good documentation and data/software management practices in any students or interns under their supervision, particularly when the research conducted by these students is used for publications and/or future research projects.
  5. Researchers are expected to determine the appropriate facilities, systems and tools for effective research data & software management, seeking advice from ITVO, TO3 and the FGB research data stewards as required.

  6. Researchers are expected to seek advice regarding the ethics and scientific integrity of their research. They are responsible for determining if the project must be approved by an METc, the CCMO or an external body as required by their research funder. If none of these conditions apply, researchers are strongly advised to submit their research proposals to the Scientific and Ethical Review Board (VCWE) for ethical review, while recognizing that the VCWE cannot be held accountable for the researchers’ ethical conduct.6

  7. Research data must be archived according the local FGB implementation of the DSW National Guidelines on Archiving.7

Department heads

  1. Department heads8 are ultimately responsible for the data collected by researchers in their department. In addition to supporting the management of research data when researchers terminate their employment at VU Amsterdam (as described in the VU Research Data and Software Management Policy (Version 3.0, 17-12-2024) under Responsibilities, article 9):
    1. Departments heads will represent the “data owner” in documentation where a specific individual must be named, such as on data classification forms;
    2. Department heads are responsible for maintaining reading rights to all archived research data within their department.

Faculty board

  1. The board will require the teaching of FAIR data management principles in the bachelor, masters, and graduate level curricula.

    1. For further information on this topic, contact the FGB Director of Education.
  2. The board will assess and ensure the compatibility between the RDM policies of the faculty and the interdisciplinary institutes.

  3. The faculty board will report to the university board about the RDM policy for FGB.

  4. The board will appoint research data stewards who will:

    1. Develop and maintain a library of tools, guidelines, protocols and courses that help FGB researchers to comply with good RDM practices and to promote the achievement of the FAIR data principles;
    2. Provide advice to FGB staff about RDM and privacy issues, as required;
    3. Maintain a network of communication with FGB department-level data managers and research data support services from other faculties and the VU library;
    4. Conduct internal audits to monitor compliance with this RDM policy;
    5. Develop procedures to support the faculty with data verification requests and data reuse requests.

Faculty director

  1. The director will ensure the proper functioning, security, and reliability of FGB facilities for data storage and management.

  2. The director will sign contractual agreements with third parties, such as processing agreements with data processors, data sharing agreements and so forth, on behalf of the Stichting VU.

    1. For contractual agreements under 50.000 euro, department managers are mandated to sign contractual agreements on behalf of the faculty director.

Inter-faculty institutes

  1. For institutions that span multiple faculties, a separate RDSM policy may be created, while still acknowledging the spirit of the policies from the respective faculties. Any major conflicts in RDSM policy between faculties can be discussed with the research data stewards from the respective faculties and with the University Library RDSM experts to determine an appropriate compromise.

Procedures

  1. This RDM policy originally took effect on February 1, 2019. The most recent major update was implemented on May 1, 2025. All responsible parties are henceforth expected to be aware of their tasks and to have reviewed any applicable documents.

  2. Research institutes will report annually on their activities to support data & software management.

Facilities and Support

  1. FGB provides access to mass storage with backups within the VU network. Expansion needs will be evaluated annually.
    1. FGB, in collaboration with the other faculties, will work to improve upon existing mass storage options to create solutions specific to the types of data created within FGB that also meet the research requirements of FGB researchers. A particular focus will be given to extremely large data files.
    2. Support for complex IT and/or security questions can be sought via the RDM Support Desk.
    3. Any actual or potential data breaches must be reported immediately to the IT Service Desk. The (potential) data breach must also be reported to the faculty’s Research and Policy Support (REPS) team via .
  2. FGB researchers can request support from the faculty’s Technical Support Department (TO3). TO3 technicians manage and develop many of the labs, equipment, devices, software and hardware that are necessary for high quality research within FGB. Tasks include developing apps and web forms, providing support with online questionnaires, developing innovative research solutions such as Wi-Fi-enabled accelerometry or non-invasive stress measurements, and providing technical support in a variety of laboratory settings, ranging from human movement and psychological experiments to animal- and cell-based research.
    1. Researchers requiring technical support should contact the TO3 technicians as early as possible in their project planning.
  3. FGB researchers can contact the Research and Policy Support (REPS) team with questions about research data & software management, privacy & legal concerns, and policy issues on research & valorization. The team consists of:
    1. Research data stewards who can be contacted () for questions about research data management, data management plans and the FAIR data principles. Research data stewards will also conduct training sessions on good data and software management.
      1. Support for research data & software management, alongside policies and guidelines, can also be found on the faculty support page for research data management.
    2. Privacy officers () who can be contacted for support on issues related to privacy in research. The FGB privacy officer is the first point of contact, but if an issue is particularly complex the question will be elevated to the privacy lawyers from the VU Legal and Institutional Affairs Department.
      1. Support for privacy concerns can also be found on the faculty support page for privacy, legal and security concerns.
    3. The FGB Research Policy Advisor who can advise researchers about research impact and valorization.
  4. VU Legal Affairs () can be contacted to draw up legal agreements that go beyond privacy requirements, such as consortium agreements, data sharing/transfer agreements, data ownership agreements etc. They can also support researchers with questions about the intellectual property created during a research project and the potential for patenting that intellectual property.

  1. See FGB Policy Positions on the GDPR for important legal implications with regards to privacy.↩︎

  2. See Preregistration Essentials Enhancing Transparency in Research for information on what pre-registration is and how to effectively carry it out. FGB staff should use OSF to pre-register their research and, in general, the OSF Preregistration template should be used. However, if another template is more appropriate for the type of research being conducted (e.g. Open-Ended Registration for exploratory research, Qualitative Preregistration for qualitative research etc.) staff are free to select the most suitable option.↩︎

  3. See FGB Security Tips: The Basics, particularly FGB Security Tips: Safe Practices for Students Working With Research Data for more information.↩︎

  4. See FGB Security Tips: The Basics and the associated In-Depth Guides.↩︎

  5. See the Workflow for processing standard privacy agreements for information on determining which privacy agreements are needed and how to put those agreements in place. Further information on the necessary privacy agreements and when they need to be applied is also found in the GDPR Take-Home Points for Researchers.↩︎

  6. The faculty implementation of the Code of Ethics for Research in the Social and Behavioural Sciences Involving Human Participants outlines the ethical standards expected of every FGB researcher.↩︎

  7. Detailed information on the requirements for data archiving within FGB can be found in the FGB Implementation of the National Guidelines for Archiving of Academic Research for Faculties of Behavioural and Social Sciences. For research projects conducted by an interdisciplinary research institute, the institute may have separate guidelines on archiving data.↩︎

  8. In this section, the responsibilities of a department head are tied to the position of department head, not the individual. When one individual steps down from this role, the new individual takes over the responsibilities of their predecessor.↩︎