Some theses contain information that is sensitive. If yours does, you must take steps to protect it. This is to prevent harm to individuals, organisations or the University.
On this page:
- What counts as sensitive information
- Who is responsible for managing sensitive information
- How to manage sensitive information
- Legal context
- Further help and support
What counts as sensitive information
Sensitive information is any data that must be protected because it could:
- harm someone’s health, safety, or privacy
- damage commercial or legal interests
- offend or upset cultural groups
- break a confidentiality agreement
- breach the UK General Data Protection Regulation (GDPR)
This includes:
- personal data
- information provided in confidence
- content relating to legal cases
Who is responsible for managing sensitive information
As the author, it is your responsibility to check if your thesis contains sensitive material. If it does, you must take steps to manage it. This could include:
- removing or redacting the sensitive material
- getting written permission to use or share it
- applying an access restriction to your thesis.
If you are not sure whether something is sensitive, speak to your supervisor.
How to manage sensitive information
You should follow these steps to determine whether your thesis contains sensitive information and how to handle it correctly.
- Check if your thesis contains sensitive information
- if it does not, deposit it in Apollo with an appropriate access level.
- if it does, go to step 2
- Check if you have permission to use the sensitive material in your thesis
- if you do not have permission, go to step 3
- if you do, go to step 4
- If you do not have permission
- try to obtain permission to share it in your thesis (if appropriate- it may not always be appropriate)
- try to redact the sensitive material.
- if you cannot redact it, consider restricting your thesis in Apollo, either temporarily or permanently
- If you do have permission
- check if you are allowed to make it openly available
- if you are not, consider redacting the material, or restricting the thesis in Apollo
- if you are, save a copy of your permission. Choose an appropriate access level, and deposit an unredacted copy of your thesis in Apollo
Legal context
The University must follow the Freedom of Information Act 2000. This law means we are required to restrict some types of sensitive material in theses.
We may also choose to restrict other content to protect people, organisations or research projects, even if the law does not require it.
Further help and support
If you have questions, or need advice on managing sensitive information, please contact the Thesis team.