Information mapping
See Mapping to other guidelines for more details.
CoreTrustSeal: no specific requirement matches
INCF: Accessibility
Access¶
The ANC determines access arrangements according to the characteristics of the dataset and the status of the user. Access is governed through contractual, legal, and technical measures to ensure that access decisions are consistent with applicable rights management requirements.
Contractual and legal basis¶
The conditions for access are defined in the Transfer and License Agreement and the ANC License (see Rights [AF15]). These documents specify the conditions under which data may be accessed and used, and identify who is authorised to grant access. They also distinguish between responsibility for stewardship of the dataset and legal responsibility for decisions concerning access and sharing.
Datasets containing personal data are treated as restricted according to the legal framework (see Legal and Ethical [AF23]) and are therefore subject to controlled access. Datasets that do not contain personal data may, where appropriate, be made publicly available (link public data sharing or define here).
Access routes and methods¶
The ANC supports different access routes depending on the sensitivity of the data (add link). Non-restricted datasets may be made available through direct download (add link). Restricted datasets require an ANC account and an explicit access grant (add link). Access is therefore limited to authenticated users who have been authorised for the relevant dataset.
Roles and responsibilities¶
The ANC is implementing a dedicated user role framework to make access responsibilities more transparent (add link or define here). Within this framework, the Data Custodian is the person legally responsible for the dataset and authorised to decide on access. The Data Steward is responsible for repository stewardship, dataset quality control, and the implementation of approved changes, but does not decide on access requests.
Further roles distinguish different forms of participation. Data Consumers may access and download data and raise issues relating to the dataset. Data Contributors may propose additions or updates. Data Stewards review and apply approved changes. This role framework aligns technical permissions with governance responsibilities and provides greater clarity to users.
Custody chain and continuity¶
The ANC is establishing a clearer custody chain to ensure continuity of access governance over time. Initially, the Data Custodian is the depositor, typically the person primarily responsible for data acquisition and preparation. Where possible, this person should remain the active custodian.
Custodianship should only be transferred when the original custodian can no longer fulfil this role. In such cases, responsibility should pass to a person with institutional continuity, such as a principal investigator, research group leader, or a person with dedicated data stewardship responsibilities within the relevant research group or institution.
Where responsibility is transferred, this should be reflected in the designated custodian role. If no custodian remains available and responsibility has not been reassigned, the ANC may assume decision-making responsibility as a last resort within the contractual framework.