Deep Blue Data meets the OSTP desirable characteristics of data repositories
Deep Blue Data can help you meet the data sharing requirements of federal grants, as it meets most of the United States Office of Science and Technology Policy (OSTP) desirable characteristics of data repositories. Each of the characteristics in the document are organized into four main themes and each section below lists the categories within that theme and how Deep Blue Data specifically meets these requirements:
Compliance key:
Fully Met
Partially Met
Not Met
Not Applicable
If you have any questions, please Contact Us.
Organizational Infrastructure
| Characteristic | Definition | Deep Blue Data (DB Data) | Compliance |
|---|---|---|---|
| Free and Easy Access | The repository provides broad, equitable, and maximally open access to datasets and their metadata free of charge in a timely manner after submission, consistent with legal and policy requirements related to maintaining privacy and confidentiality, Tribal and national data sovereignty, and protection of sensitive data. | All datasets published in DB Data are freely and openly available to anyone with an internet connection. DB Data is free for both dataset depositors and users. All datasets are reviewed prior to publication, including checking that sensitive information has been removed or the dataset referred to a more appropriate repository. |
Fully Met
|
| Clear Use Guidance | The repository ensures datasets are accompanied by documentation describing terms of dataset access and use (e.g., reuse licenses and need for approval by a data use committee). | DB Data requires a documentation file (such as a ReadMe.txt file) for each dataset. We strongly encourage use of our documentation template, which includes licensing information. Depositors are required to select an open access license for each dataset. |
Fully Met
|
| Risk Management | The repository has documented capabilities for ensuring that administrative, technical, and physical safeguards are employed to comply with applicable confidentiality, risk management, and continuous monitoring requirements for sensitive data. | DB Data does not accept sensitive data. All datasets are reviewed prior to publication, including checking that sensitive information has been removed. Data integrity is maintained via routine checksums. |
Fully Met
|
| Retention Policy | The repository provides documentation on policies for data retention. | DB Data commits to a ten-year retention period, as outlined in the U-M Library’s Digital Repository Services Digital Preservation Policy. Preservation practices for retained data are documented in the U-M Library Preservation Policy. Work is still underway to bring the repository up to the standard of the U-M Library's Preservation Baseline. |
Partially Met
|
| Long-term Organizational Sustainability | The repository has a plan for long-term management of data, including maintaining integrity, authenticity, and availability of datasets; has contingency plans to ensure data are available and maintained during and after unforeseen events. | DB Data has ongoing, stable financial support from U-M, which provides a reasonable expectation of its long-term sustainability. DB Data has federated preservation of datasets via APTrust. Lacks a business continuity plan or documented disaster recovery plan in the case of serious incidents. |
Partially Met
|
Digital Object Management
| Characteristic | Definition | Deep Blue Data | Compliance |
|---|---|---|---|
| Unique Persistent Identifiers | The repository assigns a dataset a citable, unique persistent identifier (PID or DPI), such as a digital object identifier (DOI), to support data discovery, reporting (e.g., of research progress), and research assessment (e.g., identifying the outputs of Federally funded research). The unique PID points to a persistent location that remains accessible even if the dataset is de-accessioned or no longer available. | Each dataset is assigned a DataCite-generated DOI before publication. The DOI will resolve to a ‘tombstone’ record even if the dataset has been removed or withdrawn. |
Fully Met
|
| Metadata | The repository ensures datasets are accompanied by metadata to enable discovery, reuse, and citation of datasets, using schema that are appropriate to, and ideally widely used across, the communities that the repository serves. | DB Data invites deposits from any U-M researchers. As such, our metadata schema was designed to be broad and inclusive. Depositors are required to provide basic Dublin Core metadata and encouraged to provide robust metadata for each dataset. We strongly encourage use of our documentation template to enable others to understand, trust, and reuse the dataset. |
Fully Met
|
| Curation and Quality Assurance | The repository provides or facilitates expert curation and quality assurance to improve the accuracy and integrity of datasets and metadata. | All datasets are subject to a data curation review by a Data Curation Specialist prior to publication. The data curation review involves an evaluation of a researcher’s data file(s), documentation file(s), and metadata to ensure the dataset is as complete, understandable, and accessible as possible. U-M Library is also a member of the Data Curation Network (DCN), providing a network of curation expertise for various disciplines and data types. Our data curation review workflow follows the DCN’s well-established CURATED Steps. |
Fully Met
|
| Broad and Measured Reuse | The repository ensures datasets are accompanied by metadata that describe terms of reuse and provide the ability to measure attribution, citation, and reuse of data (e.g., through assignment of adequate and openly accessible metadata and unique PIDs). | Depositors are required to select a license for their dataset prior to publication. Each dataset in DB Data has an automatically generated citation (which includes its DataCite-generated DOI). The dataset’s citation, metadata, and terms of reuse (via a Creative Commons or other license) are clearly identified on each dataset page. COUNTER analytics are fed to IRUS, but these are not readily available on the landing page. Altmetric and Dimensions tags are not on the landing page. |
Partially Met
|
| Common Format | The repository allows datasets and metadata to be accessed, downloaded, or exported from the repository in widely used, preferably non-proprietary, formats consistent with standards used in the disciplines the repository serves. | DB Data is an open repository where anyone can download data files and metadata regardless of affiliation. Depositors are strongly encouraged to use open, non-proprietary file formats. When possible, research data in proprietary formats are accompanied by alternative open formats. Metadata is available through an API in JSON format. |
Fully Met
|
| Provenance | The repository has mechanisms in place to record the origin, chain of custody, version control, and any other modifications to submitted datasets and metadata. | DB Data records PREMIS events for every modification of the dataset, both before and after publication. Data curators keep a log of any changes made during curation. They also post public notes on the dataset's landing page if any changes are made to the dataset or metadata after publication. |
Fully Met
|
Technology
| Characteristic | Definition | Deep Blue Data | Compliance |
|---|---|---|---|
| Authentication | The repository supports authentication of data submitters. The repository has technical capabilities that facilitate associating submitter PIDs with those assigned to their deposited digital objects, such as datasets. | Depositors are authenticated using U-M's single sign-on, and their institutional identity is associated directly with their deposited objects, and with associated DOIs. DB Data has the official ORCID iD integration, allowing direct import of the data creator’s ORCID iD. |
Fully Met
|
| Long-term Technological Sustainability | The repository has a plan for long-term management of data, building on a stable technical infrastructure and funding plans. | U-M Library has invested in full-time staff roles in research data management, repository support, and digital preservation. In addition to Data Curators, DB Data has dedicated developer support from Library IT and the Digital Preservation unit. The platform and service are designed to subscribe to the U-M Library’s Digital Preservation Baseline. Long-term platform and hosting strategies align with those for digital library collections and other repository services, and support for DB Data storage is firmly within the long-term strategic goals for Library IT. |
Fully Met
|
| Security and Integrity | The repository has documented measures in place to meet well-established cybersecurity criteria for preventing unauthorized access to, modification of, or release of data, with levels of security that are appropriate to the sensitivity of data (e.g., the NIST Cybersecurity Framework: https://www.nist.gov/cyberframework). | DB Data is in full compliance with relevant U-M Standard Practice Guides and U-M Information Technology Services Policies and Standards covering data and cybersecurity. |
Fully Met
|
Storing Human Data
| Characteristic | Definition | Deep Blue Data | Compliance |
|---|---|---|---|
| Fidelity to Consent | The repository employs documented procedures to restrict dataset access and use to those that are consistent with participant consent (such as for use only within the context of research on a specific disease or condition) and changes in consent. | DB Data doesn’t accept restricted access datasets. DB Data collects and reviews consent forms, participant agreements, or information sheets for all datasets involving human participants. Only human participants data that has proper consent for data sharing, is fully de-identified, presents no harm to participants if their identity was inadvertently discovered, and otherwise meets U-M’s Data Classification Level “Low”, can be deposited into DB Data. |
Fully Met
|
| Security | The repository implements and provides documentation of appropriate approaches (e.g., tiered access, credentialing of data users, security safeguards against potential breaches) to protect human subjects’ data from inappropriate access. | Not applicable - DB Data does not accept identifying human participant data. |
Not Applicable
|
| Limited Use Compliant | The repository employs documented procedures to communicate and enforce data use limitations, such as preventing reidentification or redistribution to unauthorized users. | DB Data Terms of Use states that users agree to not attempt to identify any individuals included in the data or otherwise infringe the privacy or confidentiality rights of individuals discovered inadvertently or intentionally in the data. Further, users agree to abide by any license conditions applied to the data by the depositor, including citation of data in publication reference sections and presentations. |
Fully Met
|
| Download Control | The repository controls and audits access to and download of datasets. | DB Data does not restrict access or download, in part because it does not accept identifying human participant data. |
Not Applicable
|
| Request Review | The repository makes use of an established and transparent process for reviewing data access requests. | DB Data does not restrict access or download, in part because it does not accept identifying human participant data. |
Not Applicable
|
| Plan for Breach | The repository has security measures that include a response plan for detected data breaches. | DB Data is subject to relevant U-M policies, including Information Security, Institutional Data Resource Management Policy, Information Responsible Use of Information Sources, and U-M Privacy Statement. |
Fully Met
|
| Accountability | The repository has procedures for addressing violations of terms-of-use and data mismanagement. | DB Data is subject to relevant U-M policies including Information Security Incident Reporting, Minimum Information Security Requirements for Systems, Applications, and Data, Privacy and the Need to Monitor and Access Records, Access Authorization and Authentication standard, and Responsible Use of Information Sources. These policies include accountability measures for U-M affiliated users, including investigations by the U-M Information Technology Services of reported instances of misuse of data. For misuse by non-U-M users, accountability measures are limited to those allowable by law. |
Partially Met
|