Research Security

The University of Guelph recognizes that its research reputation is founded on open and collaborative partnerships with national and international partners in the academic, government, industry and non-profit sectors. These play a key role in research advancements and addressing social, technological and economic issues, and require the research community to take steps to ensure their research is protected.

As required under the OMAFA-UofG Agreement, the University will perform a research security assessment prior to awarding Ontario Agri-Food Innovation Alliance Research and Innovation Funds or allowing activities to be carried out at an ARIO Research Centre.
An Alliance Research Security Policy was developed in collaboration with the Research Security team in the Research Services Office (RSO). The objectives of the policy are to:

Assess the sensitivity of the research, including whether research could be at risk or targeted for theft, espionage or foreign interference.
Assess the risk level of any partners or partner organizations involved in the research.
Develop and implement effective risk mitigation measures to address risks identified.

This webpage highlights key elements of the policy.

Programs in Scope

Collection of Research Security Information in the Research Management System (RMS)

Information related to research security is captured in the RMS proposal template through responses to a Research Security Checklist on the Research Security tab, as well as information provided in the Team, Intellectual Property, Budget (co-funder table) and OR-5 tabs. Information provided in these sections of the proposal will be assessed for research security implications.

The Research Security Checklist is based directly on the Federal Government’s National Security Guidelines for Research Partnerships Risk Assessment Form.

For each ‘Yes’ or ‘Unsure’ answer to Section 1 (Know your Research) or Section 2 (Know your Partner) on the Research Security tab, ‘Risk Identification’ and ‘Risk Mitigation’ information will be completed (Section 3).

Mitigation measures should be tailored to the project and be commensurate with the risks identified while considering open science principles. Examples of risk mitigation measures include, but are not limited to:

Raising research security awareness and building capacity across the research team (training).
Data Management Plans outlining sound cybersecurity and data management practices.
Agreement on the intended use of research findings.
Partnership agreements that include intellectual property and technology transfer clauses.
Establishing access restrictions for partners and personnel to an “as needed” basis.
Attestations completed by all team members as per the Government of Canada’s Sensitive Technology Research and Affiliations of Concern (STRAC) policy, or equivalent form.

Additional guidance for completing the Research Security tab is available on the following webpages:

U of G Guide for completing the National Security Guidelines for Research Partnerships Risk Assessment Form, includes guidance on ‘critical infrastructure’ related to food
U of G Guide to Developing a Risk Mitigation Plan

Accessibility of Research Security Information in RMS

Research security information will be editable and accessible by the Lead Applicant, Co-Applicant and the Delegate (if assigned by the Lead Applicant). The research security tab will not be visible to other team members.

Research security is not part of the quality assessment of the proposals and the research security tab will not be visible to panel or peer reviewers.

Research security information in proposals will be accessible to U of G and OMAFRA staff directly involved in the administration of Alliance programs. Alliance program staff will engage the Research Risk team in the RSO and share information as needed to support the research security assessment.

Research Security Assessment

Review by U of G Alliance Program Staff

During the proposal review period, a project will be flagged to RSO by Alliance program staff if:

The applicant selected ‘Yes’ or ‘Unsure’ to any of the questions in Section 1 or 2 of the Research Security Checklist, indicating a potentially sensitive research area and/or a partnership with potential risk.
A partner or co-funder organization is headquartered outside the 5 Eyes (Canada, United States, United Kingdom, Australia and New Zealand), or it is uncertain where the organization is headquartered. If the partner is a subsidiary, then this criteria will apply to the headquarter location of the parent company.
If their headquarters are within the 5 Eyes, a commercial/private partner is new to the U of G (no engagement within the past 4 years).

Government agencies, public institutions/organizations (e.g. universities, conservation authorities etc.) or industry associations within the 5 Eyes will not be assessed further.

Review by the RSO Research Risk Team

The purpose of the RSO review is to:

Identify if a potential concerning research security risk exists.
Evaluate the identified project risk(s) and complete, as needed, the Researcher Due Diligence (RDD) and/or the Partner Due Diligence (PDD) form as per established processes at RSO (Research Security Due Diligence Process).
Ensure a suitable mitigation plan is in place to manage identified risks. RSO may work with the applicant, as applicable, to create or further develop the mitigation plan.
Confirm if a ‘material’ research security risk exists that would require notification of OMAFRA. A ‘material’ research risk occurs where there is clear dual use/military end use; or a partner is assessed as high risk without a suitable mitigation plan and after consultation with researcher, the partner cannot be replaced.

Notification of OMAFRA

OMAFRA will be made aware of any ‘material’ research security risks (as defined above). OMAFRA will review the risk(s) and the mitigation plan and will determine if the project can advance in the review process.

Research Security Resources

U of G Guide for completing the National Security Guidelines for Research Partnerships Risk Assessment Form, includes guidance on ‘critical infrastructure’ related to food
U of G Guide to Developing a Risk Mitigation Plan
U of G Safeguarding Research webpage
Mitigating economic and/or geopolitical risks in sensitive research projects – A tool for university researchers published by Universities Canada
Government of Canada Research Security Training Courses

Research security is an evolving area and a relatively new process for the Alliance and the University of Guelph. It is understood that the Alliance Research Security Policy may continue to evolve as the practical work of implementing the policy gets underway, and as new or updated policies are released by other funding bodies.

If you have any questions about this policy, please reach out to Stacy Favrin, Senior Manager, OMAFA-U of G Agreement Research Programs at favrinst@uoguelph.ca. Specific questions about research security can also be directed to the Research Security team in the Research Services Office at research.security@uoguelph.ca.

Research Security

Assess the sensitivity of the research, including whether research could be at risk or targeted for theft, espionage or foreign interference.
Assess the risk level of any partners or partner organizations involved in the research.
Develop and implement effective risk mitigation measures to address risks identified.

This webpage highlights key elements of the policy.

Programs in Scope

Collection of Research Security Information in the Research Management System (RMS)

The Research Security Checklist is based directly on the Federal Government’s National Security Guidelines for Research Partnerships Risk Assessment Form.

Raising research security awareness and building capacity across the research team (training).
Data Management Plans outlining sound cybersecurity and data management practices.
Agreement on the intended use of research findings.
Partnership agreements that include intellectual property and technology transfer clauses.
Establishing access restrictions for partners and personnel to an “as needed” basis.
Attestations completed by all team members as per the Government of Canada’s Sensitive Technology Research and Affiliations of Concern (STRAC) policy, or equivalent form.

Additional guidance for completing the Research Security tab is available on the following webpages:

U of G Guide for completing the National Security Guidelines for Research Partnerships Risk Assessment Form, includes guidance on ‘critical infrastructure’ related to food
U of G Guide to Developing a Risk Mitigation Plan

Accessibility of Research Security Information in RMS

Research security is not part of the quality assessment of the proposals and the research security tab will not be visible to panel or peer reviewers.

Research Security Assessment

Review by U of G Alliance Program Staff

During the proposal review period, a project will be flagged to RSO by Alliance program staff if:

The applicant selected ‘Yes’ or ‘Unsure’ to any of the questions in Section 1 or 2 of the Research Security Checklist, indicating a potentially sensitive research area and/or a partnership with potential risk.
A partner or co-funder organization is headquartered outside the 5 Eyes (Canada, United States, United Kingdom, Australia and New Zealand), or it is uncertain where the organization is headquartered. If the partner is a subsidiary, then this criteria will apply to the headquarter location of the parent company.
If their headquarters are within the 5 Eyes, a commercial/private partner is new to the U of G (no engagement within the past 4 years).

Government agencies, public institutions/organizations (e.g. universities, conservation authorities etc.) or industry associations within the 5 Eyes will not be assessed further.

Review by the RSO Research Risk Team

The purpose of the RSO review is to:

Identify if a potential concerning research security risk exists.
Evaluate the identified project risk(s) and complete, as needed, the Researcher Due Diligence (RDD) and/or the Partner Due Diligence (PDD) form as per established processes at RSO (Research Security Due Diligence Process).
Ensure a suitable mitigation plan is in place to manage identified risks. RSO may work with the applicant, as applicable, to create or further develop the mitigation plan.
Confirm if a ‘material’ research security risk exists that would require notification of OMAFRA. A ‘material’ research risk occurs where there is clear dual use/military end use; or a partner is assessed as high risk without a suitable mitigation plan and after consultation with researcher, the partner cannot be replaced.

Notification of OMAFRA

Research Security Resources

U of G Guide for completing the National Security Guidelines for Research Partnerships Risk Assessment Form, includes guidance on ‘critical infrastructure’ related to food
U of G Guide to Developing a Risk Mitigation Plan
U of G Safeguarding Research webpage
Mitigating economic and/or geopolitical risks in sensitive research projects – A tool for university researchers published by Universities Canada
Government of Canada Research Security Training Courses

Research Security

Review by U of G Alliance Program Staff

Review by the RSO Research Risk Team

Notification of OMAFRA

Stay connected

Follow us @AgInnovationON

In collaboration with

Research Security

Review by U of G Alliance Program Staff

Review by the RSO Research Risk Team

Notification of OMAFRA

Stay connected

Follow us @AgInnovationON

In collaboration with