Proprietary Data (Research)
This page discusses proprietary data as it applies in the research context only.
What is proprietary data?
Data that an organization/company or individual owns and controls which is not generally known or easily accessible to the public.
The most common example would be where a company holds data that provides them with a competetive advantage. However, SBU may also have proprietary research data in research and development data, algorithms, software, and intellectual property.
What are the applicable regulations for proprietary data?
While there are federal and state laws and regulations that address cybersecurity requirements for protecting proprietary data, most of these relate to personally identifiable information (discussed separately).
Most organizations/companies adopt industry standards to protect their proprietary data.
SBU's policy and standards are available at:
How could a researcher receive proprietary data?
Whenever a researcher is party to any kind of confidentiality agreement they are likely to receive proprietary information (or data). Researchers may also receive proprietary data under a research agreement, such as collaborations, sponsored research, or testing. In some cases, researchers may receive proprietary data in absence of an agreement - but where confidentiality is verbally applied.
What must a researcher do if they receive proprietary data?
Proprietary data received needs to be protected according to the standards stipulated in the agreement for the exchange of the proprietary information.
SBU standards should be used in absence of a formal written agreement and/or stipulated standards.