Determining what data you record in IncidentAnalytix is something that your organization needs to carefully review. Depending on the country and/or state/province you operate from you may be bound by certain laws, statutes or regulations. In some cases you may operate in multiple jurisdictions and be required to follow different practices in different locations. You also may be impacted by laws and statutes completely outside your country of origin. For example, if your program includes people from the European Union (participants, staff or others) then in 2018 you will be impacted by the General Data Protection Regulation (GDPR) which applies to how personal data of EU citizens is collected.
IncidentAnalytix serves only as a data repository and assumes no responsibility for the data you collect. It is up to your organization to understand and abide by the appropriate laws, statutes or regulation and only collect that information that you are permitted to collect.