What Is The Service?
Governance, Risk and Compliance (GRC) reviews DUAs for security Terms and Conditions. GRC partners with Cyber-Research Infrastructure (RCI) to interview the Principal Investigator to discover how the data in the DUA will be stored, processed, or transmitted. Changes to current security practices may be required to meet the conditions of the agreement.
Once the final data security plan is documented, GRC makes a recommendation to the requestor as to whether the conditions of the DUA can be met or not.
Who Is Eligible to Use It?
Material Transfer and Confidential Disclosure (MTCD) handle most DUA’s for the University. They document and track DUAs through an Agreement Approval and Governance Request (AAGR) process. All AAGR requests must go through MTCD. MTCD is the only office that can request Risk Assessments for an AAGR.
How Do I Use It?
Submit an email to GRC@msu.edu with a subject line that includes AAGR-xxxxx, where xxxxx is the number assigned in the AAGR system.