ARC REDCap Security and Privacy

At ARC we strive to deliver innovative and secure technologies to UBC researchers. This is why we have ensured that The ARC REDCap platform was configured and is being maintained with security and privacy in mind. This page will briefly present some of the key security and privacy features of The ARC REDCap platform.

Before you read this page 

Before you read this page, it is important to know that:

  • Any Eligible UBC Researcher intending to use The ARC REDCap platform for a research project is responsible for ensuring that all use remains in compliance with all applicable policies, regulations, laws, ethics requirements, and agreements. For more information see the UBC The ARC REDCap platform Terms of Service .
  • In cases where a research project collects, stores, or process sensitive information, a Security Threat Risk Assessment (“STRA”) that examines the entire project workflow and toolchain used to protect this information during academic research may be recommended. This page is intended to provide relevant security and privacy information about The ARC REDCap platform and cannot replace an STRA. For more information about STRA, visit our Security and Privacy section.
UBC Datacenter rack switch

UBC Information Security Requirements

The ARC REDCap platform is configured to meet the requirements set by UBC Information Systems Policy (SC14) and associated standards. 

Marine Science Centre sample classification

Information Classification

The current security controls of The ARC REDCap platform allow UBC researchers to collect and temporarily store UBC information of all classifications.

Life Science Lab on Vancouver campus


At UBC, research projects may be subject to review by a Research Ethics Board (REB), which approves the project and sets requirements around data collection, use and disclosure. Before completing your REB application, visit our information page on REB applications for the ARC REDCap platform.

Architecture Security

The ARC REDCap platform is designed with a multi-layer architecture to ensure data is not directly exposed outside its environment. Secure architecture hardening controls including network protection, endpoint detection and response, vulnerability scanning, and patch management are in place to prevent unauthorized access and actions on the platform. Expand the sub-sections below to learn more about the current controls in place:


Information Security

The ARC REDCap platform is configured with multiple security and information protection controls to ensure research information is protected while stored on the platform. Expand the sub-sections below to learn more about the current controls in place:

UBC Datacentre ram chip


UBC Vancouver campus fountain


The ARC REDCap platform is designed to facilitate information capture, primarily for High or Very High risk information. It is a self-service web application for the collection of simple tabular data such as intake forms, information collection instruments, and surveys. Expand the sub-sections below to learn more about the platform's privacy:


Training and Awareness

Training is available for users of The ARC REDCap platform to ensure research is conducted following UBC requirements and cybersecurity best practices.

Dr. Joanne Fox teaches a class at Orchard Commons



Research Data Management logo

User management logo

Lock logo


Additional Resources 

To learn more about the ARC REDCap platform, visit:


To learn more about security and privacy for research visit:

Security and Privacy

Can’t find what you are looking for? 

Send us an email at to talk to one of our subject matter experts.  

UBC Crest The official logo of the University of British Columbia. Urgent Message An exclamation mark in a speech bubble. Caret An arrowhead indicating direction. Arrow An arrow indicating direction. Arrow in Circle An arrow indicating direction. Arrow in Circle An arrow indicating direction. Chats Two speech clouds. Facebook The logo for the Facebook social media service. Information The letter 'i' in a circle. Instagram The logo for the Instagram social media service. External Link An arrow entering a square. Linkedin The logo for the LinkedIn social media service. Location Pin A map location pin. Mail An envelope. Menu Three horizontal lines indicating a menu. Minus A minus sign. Telephone An antique telephone. Plus A plus symbol indicating more or the ability to add. Search A magnifying glass. Twitter The logo for the Twitter social media service. Youtube The logo for the YouTube video sharing service.