Access and Acceptable Use Policy

Defines how users access the D4Science infrastructure, how Virtual Research Environments are governed, and which uses of services, APIs, and shared resources are permitted or prohibited.

This is the final version 1.1 of the Access and Acceptable Use Policy, which entered into force on 1 April 2026.

Purpose and Scope

The D4Science infrastructure is a shared digital environment designed to support scientific research and innovation through collaborative access to data, computational resources, and services.

As a common infrastructure operated for the benefit of multiple research communities, it is essential that access to its services is governed by clear rules ensuring secure and controlled use of infrastructure resources, protection of users and research activities, fair access to shared capabilities, and compliance with applicable legal and institutional requirements.

This policy establishes the conditions under which users may access and use D4Science services. It applies to all interactions with the infrastructure, including access through Gateway portals, Virtual Research Environments (VREs), APIs, and programmatic interfaces.

Relationship with the Policy Framework

This policy is part of the D4Science Policy Framework and should be read together with the other policies governing the infrastructure.

Together, these policies define the rules for access, usage, security, and data management, ensuring that the infrastructure operates as a secure, reliable, and sustainable environment supporting scientific research.

Access to the Infrastructure

Access to D4Science is provided through Gateway portals, which serve as the main entry point to infrastructure services. Through these portals, users can authenticate, discover available services, and participate in collaborative environments tailored to specific research communities.

Access is governed by participation in Virtual Research Environments (VREs), which define the scope of services and resources available to each user.

User Roles

The infrastructure supports a role-based access model that reflects the collaborative nature of research activities:

  • Gateway Member: A registered user who can access the infrastructure and request participation in VREs.
  • VRE Member: A user granted access to a specific VRE to use its services and resources.
  • VRE Manager: Responsible for managing participation, approving requests, and defining community-specific access rules.
  • Infrastructure Administrators: Responsible for operating and maintaining the core services.

Authentication and Identity Management

The D4Science infrastructure uses a robust Identity and Access Management (IAM) system. Authentication mechanisms include federated identities through eduGAIN, local accounts where permitted, and optional multi-factor authentication.

Security Responsibility: Users are responsible for protecting their credentials and must not share access to their accounts.

Virtual Research Environment Access Policies

D4Science supports flexible access models to meet different community needs:

• Open Access VRE: Allows any registered user to join without approval.

• Moderated Access VRE: Requires a request reviewed by a VRE Manager.

• Private Access VRE: Access is strictly by invitation only.

These models enable the infrastructure to support both open and controlled scientific collaborations. Each VRE acts as a logical security context, ensuring that access to services and data is restricted to authorized users.

Programmatic Access and APIs

D4Science provides APIs to enable integration with external applications and automation of workflows. API access is based on OpenID Connect (OIDC) authentication and secure token-based authorization.

To ensure fair use and system stability, the infrastructure may apply limits such as rate limits, quotas, and concurrency restrictions.

Acceptable Use

D4Science is a shared infrastructure supporting public research activities. Acceptable use includes scientific research, education, collaboration, and dissemination of results. Users must comply with applicable laws, respect intellectual property rights, and adhere to ethical standards.

Prohibited Activities

Certain activities are not permitted as they may compromise the infrastructure. Users must NOT:

  • Bypass security mechanisms or access unauthorized data.
  • Deploy malicious code or misuse APIs.
  • Impersonate other users or perform illegal activities.

These restrictions are necessary to protect the integrity of the infrastructure.

Responsible Use of Resources

D4Science is a shared resource and must be used responsibly. Users must avoid excessive consumption of storage, computational power, and API usage. Operational limits (quotas, constraints) may be enforced to ensure fair and sustainable use for all users.

Reporting and Enforcement

Users are encouraged to report any suspected security issues, including unauthorized access or abnormal behaviour, through the support portal. Failure to comply with this policy may result in suspension or termination of access, or removal from VREs.

Policy Updates

This policy may be updated to reflect changes in services, operational practices, or regulatory requirements. Updated versions will be published through official D4Science channels.

Contact and Support

For questions regarding the policy framework or infrastructure services, please visit our support portal:

https://support.d4science.org

© D4Science Infrastructure - ISTI-CNR, Pisa.