From dbe3a3dda026d5165edc3a37ac9f92c6fc0fc444 Mon Sep 17 00:00:00 2001 From: James Grant Date: Wed, 11 Oct 2023 12:03:32 +0100 Subject: [PATCH 1/4] Updates index.html based on #278 proposal --- docs/source/index.md | 58 +++++++++++++++++++++++++++++--------------- 1 file changed, 38 insertions(+), 20 deletions(-) diff --git a/docs/source/index.md b/docs/source/index.md index 556d78f9..a2c265ab 100644 --- a/docs/source/index.md +++ b/docs/source/index.md @@ -46,10 +46,21 @@ contributing/walkthrough.md contributing/contributors.md ``` -The SATRE project provides a Standard Architecture for {ref}`Trusted Research Environments (TREs) `, incorporating knowledge and best practices from multiple institutions and sectors across the UK. +(what_is_satre)= + +## 👀 What is SATRE? + +The SATRE project provides a Standard Architecture for {ref}`Trusted Research Environments (TREs) `. +It incorporates knowledge and best practices from multiple institutions and sectors across the UK. +This includes all aspects of TRE provision such as information governance procedures, computing technology, data management and other capabilities. It aims to standardise the capabilities of TREs, making it easier for users, operators, and developers to work with sensitive data, and making the operation of TREs more transparent to data owners and the general public. +This specification should be useful if you are: + +- a {ref}`TRE Operator ` wanting to evaluate or improve their TRE with the suggested capabilities. +- a {ref}`Developer or Builder ` of new TREs looking for guidance in their thinking and decision making. + We encourage all TREs in the UK to {ref}`evaluate ` themselves against the SATRE specification, and to {ref}`contribute ` to the project. ## Getting started @@ -62,31 +73,38 @@ If this is your first time here we recommend reading the rest of this page to un - {ref}`The specification ` - {ref}`How to evaluate your TRE ` -(what_is_satre)= - -## 👀 What is SATRE? - -The SATRE project aims to provide a Standard Architecture for {ref}`Trusted Research Environments (TREs) `. - -The SATRE specification is our attempt to compile and document knowledge, best practices and capabilities around TRE building and operation from different institutions. -This includes all aspects of TRE provision such as information governance procedures, computing technology, data management and other capabilities. - -SATRE should +(satre_why)= -- Enable the {ref}`Operators ` of TREs to benefit from this knowledge, and empower them to improve their TREs with the suggested capabilities. -- Aid the {ref}`Developers and Builders ` of new TREs in their thinking and decision making. +## ❓ Why do we need TREs? +Personal or sensitive data which have been collected for operational, commercial or governmental reasons need to be managed securely and safely. +A TRE enables researchers to access the data in a secure environment following best practice. +This should ensure that research projects and {ref}`data consumers ` are properly authorised and that researchers only access the data they need, whilst minimising risk of data release or exposure. -(satre_why)= -## ❓ Why are we doing this? +## ❓ Why are we doing this now? -The need for TREs is clear. -Personal or sensitive data which have been collected for operational, commercial or governmental reasons need to be managed securely and safely for research use in an environment that encourages best practice. - -TREs are designed to enable access to sensitive data only for authorised projects and {ref}`data consumers `, whilst minimising risk of data release or exposure. -Influential reports from DARE UK and Health Data Research UK, together with the UK Government Goldacre review and ‘Data Saves Lives’ policy paper, have all highlighted the need for change in how sensitive data are handled. +The need for trusted research environments (TREs) is clear. +Influential reports including the UK Government's [Goldacre review](https://www.gov.uk/government/publications/better-broader-safer-using-health-data-for-research-and-analysis) and [‘Data Saves Lives’](https://www.gov.uk/government/publications/data-saves-lives-reshaping-health-and-social-care-with-data/data-saves-lives-reshaping-health-and-social-care-with-data) policy paper, have highlighted the need for change in how sensitive data are handled. +These papers set out a vision for the potential impact of research enabled by TREs. + + At present operators have to interpret a range of frameworks, legislation and guidance when building and running a TRE. + These include: + - [Office for National Statistics: 5 Safes](https://blog.ons.gov.uk/2017/01/27/the-five-safes-data-privacy-at-ons/) + - [UK Health Data Research Alliance: TRE Green Paper](https://zenodo.org/record/4594704#.Yd8RRdHP1zq) + - [UK Health Data Research Alliance: TRE Principles and Best Practices](https://zenodo.org/record/5767586) + - [Design choices for productive, secure, data-intensive research at scale in the cloud](https://arxiv.org/pdf/1908.08737.pdf) + - [ISO27001](https://www.iso.org/standard/27001) + - [Digital Economy Act](https://www.legislation.gov.uk/ukpga/2017/30/contents/enacted) + - [Handbook on Statistical Disclosure Control for Outputs](https://ukdataservice.ac.uk/app/uploads/thf_datareport_aw_web.pdf) + +This makes for inconsistent governance standards and makes it hard for researchers to work consistently in different environments. + +A common specification for TREs will improve governance and practice across the sector, simplify researcher and operator journeys. +Furthermore it will lay a foundation for interoperability that is required to maximise the impact of research by providing a trusted ecosystem for providing access to currently disparate and siloed data. + +## ❓ Who are we? The SATRE team contains representatives from several existing UK TREs, which host many different types of sensitive data. We will use the reference architecture specified here to bring these into closer alignment and make it easy for others to do the same. From 169642a70301eaf6a854108f1c33d29a2b378c60 Mon Sep 17 00:00:00 2001 From: Simon Li Date: Wed, 11 Oct 2023 15:58:36 +0100 Subject: [PATCH 2/4] Apply suggestions from code review Co-authored-by: Jim Madge --- docs/source/index.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/docs/source/index.md b/docs/source/index.md index a2c265ab..c4e779c9 100644 --- a/docs/source/index.md +++ b/docs/source/index.md @@ -58,8 +58,8 @@ It aims to standardise the capabilities of TREs, making it easier for users, ope This specification should be useful if you are: -- a {ref}`TRE Operator ` wanting to evaluate or improve their TRE with the suggested capabilities. -- a {ref}`Developer or Builder ` of new TREs looking for guidance in their thinking and decision making. +- a {ref}`TRE Operator ` wanting to evaluate or improve their TRE with the suggested capabilities +- a {ref}`Developer or Builder ` of new TREs looking for guidance in their thinking and decision making We encourage all TREs in the UK to {ref}`evaluate ` themselves against the SATRE specification, and to {ref}`contribute ` to the project. @@ -94,7 +94,7 @@ These papers set out a vision for the potential impact of research enabled by TR - [Office for National Statistics: 5 Safes](https://blog.ons.gov.uk/2017/01/27/the-five-safes-data-privacy-at-ons/) - [UK Health Data Research Alliance: TRE Green Paper](https://zenodo.org/record/4594704#.Yd8RRdHP1zq) - [UK Health Data Research Alliance: TRE Principles and Best Practices](https://zenodo.org/record/5767586) - - [Design choices for productive, secure, data-intensive research at scale in the cloud](https://arxiv.org/pdf/1908.08737.pdf) + - [Design choices for productive, secure, data-intensive research at scale in the cloud](https://arxiv.org/abs/1908.08737) - [ISO27001](https://www.iso.org/standard/27001) - [Digital Economy Act](https://www.legislation.gov.uk/ukpga/2017/30/contents/enacted) - [Handbook on Statistical Disclosure Control for Outputs](https://ukdataservice.ac.uk/app/uploads/thf_datareport_aw_web.pdf) @@ -102,7 +102,7 @@ These papers set out a vision for the potential impact of research enabled by TR This makes for inconsistent governance standards and makes it hard for researchers to work consistently in different environments. A common specification for TREs will improve governance and practice across the sector, simplify researcher and operator journeys. -Furthermore it will lay a foundation for interoperability that is required to maximise the impact of research by providing a trusted ecosystem for providing access to currently disparate and siloed data. +Furthermore, it will lay a foundation for interoperability that is required to maximise the impact of research by providing a trusted ecosystem for working with currently disparate and siloed data. ## ❓ Who are we? From a36be65623caf3592b0f81583f2e585864e696bc Mon Sep 17 00:00:00 2001 From: Simon Li Date: Wed, 11 Oct 2023 16:03:39 +0100 Subject: [PATCH 3/4] https://zenodo.org/record/4594704 --- docs/source/index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/source/index.md b/docs/source/index.md index c4e779c9..96047c3d 100644 --- a/docs/source/index.md +++ b/docs/source/index.md @@ -92,7 +92,7 @@ These papers set out a vision for the potential impact of research enabled by TR At present operators have to interpret a range of frameworks, legislation and guidance when building and running a TRE. These include: - [Office for National Statistics: 5 Safes](https://blog.ons.gov.uk/2017/01/27/the-five-safes-data-privacy-at-ons/) - - [UK Health Data Research Alliance: TRE Green Paper](https://zenodo.org/record/4594704#.Yd8RRdHP1zq) + - [UK Health Data Research Alliance: TRE Green Paper](https://zenodo.org/record/4594704) - [UK Health Data Research Alliance: TRE Principles and Best Practices](https://zenodo.org/record/5767586) - [Design choices for productive, secure, data-intensive research at scale in the cloud](https://arxiv.org/abs/1908.08737) - [ISO27001](https://www.iso.org/standard/27001) From 3f11cfc74328e539af6fd60e93c26a1245d2d9d5 Mon Sep 17 00:00:00 2001 From: Simon Li Date: Wed, 11 Oct 2023 16:08:57 +0100 Subject: [PATCH 4/4] pre-commit run -a --- docs/source/index.md | 37 +++++++++++++++++++------------------ 1 file changed, 19 insertions(+), 18 deletions(-) diff --git a/docs/source/index.md b/docs/source/index.md index 96047c3d..e97c4b39 100644 --- a/docs/source/index.md +++ b/docs/source/index.md @@ -50,8 +50,8 @@ contributing/contributors.md ## 👀 What is SATRE? -The SATRE project provides a Standard Architecture for {ref}`Trusted Research Environments (TREs) `. -It incorporates knowledge and best practices from multiple institutions and sectors across the UK. +The SATRE project provides a Standard Architecture for {ref}`Trusted Research Environments (TREs) `. +It incorporates knowledge and best practices from multiple institutions and sectors across the UK. This includes all aspects of TRE provision such as information governance procedures, computing technology, data management and other capabilities. It aims to standardise the capabilities of TREs, making it easier for users, operators, and developers to work with sensitive data, and making the operation of TREs more transparent to data owners and the general public. @@ -76,32 +76,33 @@ If this is your first time here we recommend reading the rest of this page to un (satre_why)= ## ❓ Why do we need TREs? -Personal or sensitive data which have been collected for operational, commercial or governmental reasons need to be managed securely and safely. -A TRE enables researchers to access the data in a secure environment following best practice. -This should ensure that research projects and {ref}`data consumers ` are properly authorised and that researchers only access the data they need, whilst minimising risk of data release or exposure. +Personal or sensitive data which have been collected for operational, commercial or governmental reasons need to be managed securely and safely. +A TRE enables researchers to access the data in a secure environment following best practice. +This should ensure that research projects and {ref}`data consumers ` are properly authorised and that researchers only access the data they need, whilst minimising risk of data release or exposure. ## ❓ Why are we doing this now? -The need for trusted research environments (TREs) is clear. -Influential reports including the UK Government's [Goldacre review](https://www.gov.uk/government/publications/better-broader-safer-using-health-data-for-research-and-analysis) and [‘Data Saves Lives’](https://www.gov.uk/government/publications/data-saves-lives-reshaping-health-and-social-care-with-data/data-saves-lives-reshaping-health-and-social-care-with-data) policy paper, have highlighted the need for change in how sensitive data are handled. +The need for trusted research environments (TREs) is clear. +Influential reports including the UK Government's [Goldacre review](https://www.gov.uk/government/publications/better-broader-safer-using-health-data-for-research-and-analysis) and [‘Data Saves Lives’](https://www.gov.uk/government/publications/data-saves-lives-reshaping-health-and-social-care-with-data/data-saves-lives-reshaping-health-and-social-care-with-data) policy paper, have highlighted the need for change in how sensitive data are handled. These papers set out a vision for the potential impact of research enabled by TREs. - At present operators have to interpret a range of frameworks, legislation and guidance when building and running a TRE. - These include: - - [Office for National Statistics: 5 Safes](https://blog.ons.gov.uk/2017/01/27/the-five-safes-data-privacy-at-ons/) - - [UK Health Data Research Alliance: TRE Green Paper](https://zenodo.org/record/4594704) - - [UK Health Data Research Alliance: TRE Principles and Best Practices](https://zenodo.org/record/5767586) - - [Design choices for productive, secure, data-intensive research at scale in the cloud](https://arxiv.org/abs/1908.08737) - - [ISO27001](https://www.iso.org/standard/27001) - - [Digital Economy Act](https://www.legislation.gov.uk/ukpga/2017/30/contents/enacted) - - [Handbook on Statistical Disclosure Control for Outputs](https://ukdataservice.ac.uk/app/uploads/thf_datareport_aw_web.pdf) - +At present operators have to interpret a range of frameworks, legislation and guidance when building and running a TRE. +These include: + +- [Office for National Statistics: 5 Safes](https://blog.ons.gov.uk/2017/01/27/the-five-safes-data-privacy-at-ons/) +- [UK Health Data Research Alliance: TRE Green Paper](https://zenodo.org/record/4594704) +- [UK Health Data Research Alliance: TRE Principles and Best Practices](https://zenodo.org/record/5767586) +- [Design choices for productive, secure, data-intensive research at scale in the cloud](https://arxiv.org/abs/1908.08737) +- [ISO27001](https://www.iso.org/standard/27001) +- [Digital Economy Act](https://www.legislation.gov.uk/ukpga/2017/30/contents/enacted) +- [Handbook on Statistical Disclosure Control for Outputs](https://ukdataservice.ac.uk/app/uploads/thf_datareport_aw_web.pdf) + This makes for inconsistent governance standards and makes it hard for researchers to work consistently in different environments. -A common specification for TREs will improve governance and practice across the sector, simplify researcher and operator journeys. +A common specification for TREs will improve governance and practice across the sector, simplify researcher and operator journeys. Furthermore, it will lay a foundation for interoperability that is required to maximise the impact of research by providing a trusted ecosystem for working with currently disparate and siloed data. ## ❓ Who are we?