Povzetek:

All research data should be FAIR—Findable, Accessible, Interoperable, and Reusable — and as open as possible. However, much research data contains personal data that falls under the General Data Protection Regulation (GDPR). Many researchers expressed concerns that the GDPR could conflict with the FAIR principles, especially with regard to the sharing, accessibility and reusability of personal data. This presentation showed how personal data can be both legally compliant and FAIR if the GDPR is applied correctly. The session explored the key aspects of the GDPR that are relevant to research, including the exemptions that allow data to be stored and archived beyond the usual retention periods. It also explained possible legal bases for the processing of personal data in the research context. To ensure that research data is both FAIR and GDPR compliant, researchers were encouraged to conduct a GDPR assessment at an early stage of their projects, select an appropriate legal basis for data processing and maintain transparency with participants about how their data will be used. The session addressed common challenges and provided practical advice on planning and documenting research workflows to ensure that data is accessible, protected and ready for sharing and re-use in compliance with the relevant regulations. By understanding the opportunities offered by the GDPR, researchers were empowered to ensure that their data complies with both legal obligations and FAIR principles. Participants were provided with actionable strategies to align data accessibility with data protection requirements and align their research practises with both the FAIR and GDPR frameworks.