The National Institutes of Health (NIH) has issued an implementation update for data management and access practices under the Genomic Data Sharing (GDS) Policy. This introduces updated security standards for Approved Users of controlled-access data shared under the NIH GDS Policy and for repositories and/or systems storing or providing access to these data. The updates took effect on January 25, 2025, and apply only to new projects started after that date and recompetes of continuing projects.
A list of controlled-access data repositories relevant to this implementation update can be found on the NIH site.
The implementation update requires PIs working with data received from these repositories to attest to NIH that the system storing their project’s human genomic data is compliant with NIST SP 800-171.
Our system administrators and cybersecurity experts ensure that designated systems meet the requirements specified in NOT-OD-24-157. Approved data users at IU are responsible for working with the appropriate UITS support and research contracting personnel to manage the data appropriately.
See the Knowledge Base for specific instructions.