Data Transfer and Use Agreements (DTUA), also known as Data Use Agreements (DUA) or Data Transfer Agreements (DTA), are contracts that govern the exchange and use of non-public data between one party (a data provider) to another party (a data recipient). DTUAs are a way to protect data providers, data recipients, and research participants by identifying how the data can be used by the data recipient, the applicable privacy and security obligations and other data use restrictions that may apply, any publication/disclosure restrictions, and the responsibilities of the person(s) and institution(s) receiving and using the data. When sharing data, the university may be the data provider or the data recipient.

Obtaining or Receiving Data 

University as the Data Recipient

All agreements must be reviewed by the appropriate institutional university offices to ensure the research purpose is clear and that there is an adequate security plan in place. 

Releasing Data

University as the Data Provider

University researchers do not have authority to create or sign DTUAs. If you intend to share or release research data using a DTUA, you must work through the appropriate university offices to ensure DTUAs are signed by authorized institutional officials. 

Get help with DTUAs

Choose a university office to contact based on who or what entities will provide or receive data. 

Office of Sponsored Programs Administration

ospa-awards@iastate.edu

  •  Federal agencies
  • Non-industry/commodity entities

 

Office of Innovation Commercialization

industry-contracts@iastate.edu

  • Industry/commodity entities

This page is not intended to replace policy or consultation with the appropriate university offices.