Towards trusted data sharing: guidance and case studies

Data sharing checklist

6. Identify the constraints, including legal and regulatory requirements, and how these should be addressed

  • How does the nature of the data and its use, and the partners involved, affect the principles around how data is shared?


  • What are the regulatory, commercial or other constraints? What regulatory or security clearance is required?


  • What are the contractual and intellectual property considerations? What are the rights associated with derived data sets?


  • Can the various risks be adequately addressed, and if so how? In particular, how will security risks be addressed? What security model is required, for example privacy or provenance?


  • How will data be shared and stored? How long will data be kept, and by who?

Learning from the case studies:

Organisations may recognise the benefits of sharing data, but they also want to be able to protect it from further proliferation. Trusted ways of sharing data in a controlled and enforceable way become more important.

New forms of data sharing may affect existing commercial frameworks, or require completely new commercial frameworks, as has been a key part of the Advanced Product Concept Analysis Environment (APROCONE) project.

Regulation may affect how data is shared. In some cases, regulation may provide a means of engendering trust. In other cases, novel forms of data sharing will require testing against existing regulations. For example, new procedures developed by the APROCONE project will require testing against aviation regulations. In cross-sectoral applications, there may be conflicting regulatory requirements from the different sectors represented. Cross-jurisdictional data sharing will also face challenges because of varying regulations.