Personal Data

Personal Research Data Workflow

As a TU Delft researcher, you have to follow the Personal Research Data Workflow for every research project that involves personal data (personal research data). This workflow makes it as simple as possible for researchers to comply with all requirements regarding data management, privacy and human research ethics.

To follow the workflow, create a data management plan in the DMPOnline tool. To gain access to the proper TU Delft template make sure you:

  • Set Delft University of Technology as primary research organization.
  • Tick the ‘no funder associated’ box (in the ‘Select the primary funding organisation’ section).


How does the Personal Research Data Workflow work?

The Personal Research Data Workflow combines three processes: data management planning, identifying data protection requirements and the ethical assessment of research involving human participants.

By following the Personal Research Data Workflow researchers provide information on:

  • risk implications, necessary to assess whether a (data protection) impact assessment (DPIA) must be performed;
  • privacy implications, to assess the data protection measures that are necessary to be compliant with the General Data Protection Regulation (GDPR);
  • ethics implications of the involvement of human participants, necessary to assess whether an application must be submitted to the Human Research Ethics Committee (HREC). 

While following the workflow, any follow-up actions that are required will become apparent. You will be referred to the appropriate contact persons that can advise and support you, such as data stewards, privacy officers, ICT support staff and the HREC secretary. This document provides a detailed overview of roles and responsibilities of these different parties.

If you are not sure whether you work with personal research data or not, you should still follow the workflow, and this will become clear.

Benefit for you as a researcher

  • By following the Personal Research Data Workflow, you get an overview of the relevant requirements concerning data management, privacy and human research ethics; 
  • Because you have to follow only one single process, instead of three separate procedures, the administrative burden is as limited as possible; 
  • Via the tool DMPonline you are referred to the contact persons relevant for your research project, who can assist you with advice and support;
  • Researchers can easily demonstrate in grant applications that they can comply with the GDPR during their research, an increasing number of grant providers ask for that information.


Do you have any questions about this workflow? Please contact your Faculty Data Steward.