Data access, security & confidentiality
Data access rules should be clearly defined to ensure data security and integrity. The main questions are:
    • Who should have access to the data?
    • What data should they have access to?
    • What level of access should they have?

For Example:
  • Data manager should have full access to the database;
  • Assistant data manager can edit data but cannot change database structure;
  • Data entry clerks can only key in new data;
  • Other users can only read data.
     
The data should be backed up daily for ongoing data entry and in separate media, e.g. on compact disk, tape or hard disk. A RAID server is ideal as it has automatic backup on separate hard disks. At regular intervals, the database should be backed up and the backup kept at a site outside the main office building (offsite backup).
The names of respondents must be hidden, and only the Identification number can be used.  In other words, the users cannot identify (link) the respondents and the individuals whose data is collected.