Who has access to my data?¶
When you upload data to the platform, access of other users to that data depends on where you upload the data to and on the other user's role. You are in full control of who gains access to your data; however, this requires you to understand our system for role-based access:
Algorithms¶
When someone is granted access to an algorithm, they become a user. A user may try out an algorithm with their own data. The editor of the algorithm does not gain access to this data, nor to the logs of the algorithm jobs. (More information about job permissions can be found here.)
When an editor uses their algorithm, other editors of the algorithm can see the results. As the job creator, this editor may also mark this result as public, granting anyone access to view and download the data. Other editors of the algorithm do not have permission to make the job result public.
Challenges¶
Participants of a challenge do not in any way gain access to the hidden test data or the ground truth. When their algorithms are run, the runtime environment has no internet access and data going into and afterwards taken out of the container is strictly controlled. An administrator can, however, make the logs of the algorithm jobs openly accessible to the participant—this is often used for preliminary phases to allow participants to debug their containers. Data used during these phases should no longer be considered hidden, because the logs may contain information about the data.
Challenge administrators do not gain access to the algorithm images of the participants.
Reader studies¶
Readers of a reader study need to be able to view the data during the study. This also grants them access to the display sets, allowing them to for example download the data.
Archives¶
Editors may grant access to an archive. Someone with access—either a user or an uploader—can view and download data from the archive.
Access request handling¶
The setting Access request handling allows editors to control how access requests should be handled. When set to automatically accept, users are automatically granted access when requesting it. The default setting, manually review all requests allows you to carefully review each request before granting someone access.
Also see:
How safe is my data?