Allow linking Access object to Contract object

elixir-luxembourg / daisy

Data Information System (DAISY) is a data bookkeeping application designed to help Biomedical Research institutions with their GDPR compliance.

GNU Affero General Public License v3.0

13 stars 10 forks source link

Allow linking Access object to Contract object #390

Open vildead opened 2 years ago

vildead commented 2 years ago

any access given to personal data is based on a contract/agreement
this will allow easy inspection of which access was given in scope of which contract
the contract page could then list all related access objects (and datasets)

In case of REMS integration, any access propagated from REMS wont have information on Contract -> the field should be optional

vildead commented 2 years ago

related to https://github.com/elixir-luxembourg/daisy/issues/224 If a contract linked to data declaration becomes just log in the logbook, access can be granted under different contract

vildead commented 2 years ago

access expiry date could be validated automatically condition would check if the access expiry date does not exceeds the expiry date of the linked contract

vildead commented 2 years ago

Option 2:

new model "Access mode/procedure" which will have contract of origin
access can be linked to this access mode

vildead commented 1 month ago

Another option would be to link access to an "external project" #523