Research & Innovation Services

Responsibility for due diligence rests ultimately with the researchers involved. Failure to comply with Strategic Export Control legislation (primarily the Export Control Act 2002 and the Export Control Order 2008) or with regulations under the National Security and Investment Act 2021, as well as the provision of false or misleading information, may constitute a criminal offence. Researchers must therefore carefully assess potential security risks associated with their work and any collaborations. To minimise risk researchers should:  

• Undertake due diligence on new international research and/or funding collaborations 
• Be aware of potential conflict of interests 
• Demonstrate transparency about new research commitments to partners 
• Consider digital segregation when necessary e.g. IT/data access - think about what happens to access once projects/visits are over 
• Consider Academic Technology Approval Scheme (ATAS)  and visa issues and obtain appropriate clearances (staff / students)

To check if specific items are controlled for export researchers can check the export control lists. They can also consult the NSI sector lists to help establish if it is likely that there will be national security considerations. If the work does not fall into one of these categories it does not mean that there are no national security issues. Researchers must also carry out due diligence in relation to other parties involved in their project (which could mean collaborators, partners, funders etc).  

Once due diligence is complete, researchers should report the findings to the Research Governance and Integrity team via the IT Helpdesk

The Research Governance and Integrity Team, based within Research Services, supports researchers in assessing proposed activities and identifying potential areas of risk that must be considered before work begins.

Legislation, case law and associated guidance in this area are continually evolving; accordingly, sector guidance and institutional approaches may change over time.

Where an export licence application or notification under the National Security and Investment Act 2021 is required, the Research Governance and Integrity team will request further information. Matters may be escalated to the Trusted Research Advisory Group, with supporting evidence provided to inform decisions on the appropriate course of action.

Contact us via the IT Helpdesk

The University of Glasgow has established a Trusted Research Advisory Group (TRAG), which is responsible for making institution-level decisions on the University’s approach to the Trusted Research agenda. The Group also provides an escalation route, where necessary, for cases relating to export controls and the National Security and Investment Act. In reaching its decisions, TRAG considers the financial, legal and reputational risks to both the University and individual researchers. View the Terms of Reference (PDF)

Named individuals within the University of Glasgow are responsible for overseeing and managing risks associated with Trusted Research.

• Executive/board-level owner: Dr David Duncan David.Duncan@glasgow.ac.uk
• Academic Lead for Trusted Research: Prof. Chris Pearce Chris.Pearce@glasgow.ac.uk

The named individuals with responsibility for the security of network and information systems, regularly reporting to the governing body are: 

• Executive/board-level owner: Dr David Duncan David.Duncan@glasgow.ac.uk
• Academic Lead: Mr Mark Johnston Mark.Johnston@glasgow.ac.uk