This procedure defines how and when members of the University community can share public or private unit record data and or aggregate-level administrative data with University of Minnesota faculty and researchers. This procedure applies to all University providers of data, including individuals and units. Units include, but are not limited to central units (e.g., Office of Institutional Research, central-work streams such as Human Resources, etc.), colleges, departments, centers, and programs.
Individuals or units providing data in any form, including the secondary release of data, are responsible for the application of this procedure and its related policy (see Administrative Policy: Public Access to University Information).
The standard for sharing personally identifiable private student data is defined in the Regents Policy on Student Education Records. The policy defines “legitimate educational interest” as “an interest in reviewing student education records for the purpose of performing an appropriate University research, educational, or administrative function (see below examples). The University uses the same definition of “legitimate educational interest” for sharing other private data on individuals within the University.
Example 1 When a University Researcher is doing sponsored research (i.e., under a grant or a contract with the University) they are performing a “University research function.” In those cases the “legitimate educational interest” is met, data can be shared without the need for further approval.
Example 2: When a University researcher is not doing sponsored research, the researcher should get approval from a department head or dean’s office, to validate that the person is performing a “University research, educational, or administrative function.”
In all cases where the research is subject to the Institutional Review Board (IRB), the researcher must follow IRB requirements. However, the IRB doesn’t determine the “legitimate educational interest”, so the above rules should apply.
Out of Scope for this Procedure
Private data (e.g., health information (HIPAA; or ePHI), social security numbers, PCI DSS) that is classified as Private-Highly Restricted as defined in Administrative Policy: Data Security Classification will not be shared in this manner and are out of scope for this procedure.
Those receiving requests (providers) for data from internal University audiences should be directed to Administrative Procedure: for Sharing Data with University Educational and Administrative Audiences.
Those receiving requests (providers) for data from external University audiences should be directed to Administrative Procedure: Sharing Data with Audiences External to the University.
Procedure for Sharing Data with University Faculty and Researchers
- Providers determine if the request is for public, private, or a combination of public and private data.
- Data classified as public may be shared with University faculty and researchers in unit record as well as aggregate form no matter the cell size (see Table 1.0 below).
- Those requesting private data need to demonstrate a “legitimate educational interest” that is consistent with the above definitions. Requests will be reviewed and approved on a case by case basis by the owner of the requested content or by the provider.
- At the discretion of the data owner or data provider, requests may require a written description on how the data will be used and stored along with a non-disclosure agreement.
- When possible providers should leverage existing public reports prior to further action.
- Depending on the requirements of a given request, unit record data classified as private should be de-identified prior to sharing. If private data can’t be de-identified a non-disclosure agreement may be necessary.
- Data suppression or masking is required when private data exists and one or more of the summarized cell sizes are less than ten (with the exception of item #6 above). For a list of public and private data elements see Administrative Policy: Public Access to University Information.
- When a given case requires data suppression, units should apply one of the following techniques when sharing private aggregate data.
- Ranges (see below) with no totals
- 1 – 10
- 11 – 15
- 16 – 20
- Over 20
- Percentages with no totals (mask rows/columns with 100%)
- Suppression of small cell sizes with no totals
- Ranges (see below) with no totals
- When sharing the data, providers should limit the data and reporting to the scope, depth, and breadth that is consistent with the requester’s needs.
- Data will be shared in a number of ways, including the following methods:
- Through the web (e.g., oir.umn.edu)
- Through ad hoc reporting requests
- Through secondary release via subsidiary reporting systems
|Data Type/Level of Detail||Internal Audiences (with need to know)||University of MN Faculty and Researchers||Audiences External to the University|
|Public Data - Aggregate||Yes||Yes||Yes|
|Public Data - Unit Record||Yes||Yes||Yes|
|Private Data - Aggregate||Yes||Requests will be reviewed on a case-by-case basis and may require a non-disclosure agreement||Suppression should be applied with no more than one private data element per aggregate|
|Private Data - Unit Record||Access Request Form (ARF) used by those requesting query access to data||Requests will be reviewed on a case-by-case basis and may require a non-disclosure agreement||Private unit record data will not be shared; however appeals can be sent to the OGC|
- Suppression involves applying the rule of ten to summarized data through the use of percentages, ranges or masking
- Unit Record Data refers to individual student and employee level data
- Aggregate refers to the summarization of unit record (detail) data
- OGC refers to the Office of the General Counsel
All questions about this procedure or how to apply it should be routed to Data Governance by sending an email to [email protected]