Users of data must:

  • Access data only in their conduct of university business and in ways consistent with furthering the university's mission of education, research, and public service.
  • Respect the confidentiality and privacy of individuals whose records they may access.
  • Observe any ethical restrictions that apply to the data to which they have access and handle data in a manner consistent with Duke’s values.
  • Abide by applicable laws, regulations, standards, and policies with respect to collection, access, use, disclosure, retention, and disposal of information.
  • Demonstrate a valid business purpose and obtain authorization from the designated Data Steward to access institutional data.

Users of data must not:

  • Disclose data to others except as required by their job responsibilities.
  • Use data for their own or others' personal gain or profit.
  • Access data to satisfy personal curiosity.

Duke’s data management policies, procedures and standards can be found on Duke’s Information Security website.