Today, SPARC released Navigating Risk in Vendor Data Privacy Practices: An Analysis of Elsevier’s ScienceDirect. Produced in collaboration with Becky Yoose of LDH Consulting Services, the report documents a variety of data privacy practices that directly conflict with library privacy standards, and raises important questions regarding the potential for personal data collected from academic products to be used in the data brokering and surveillance products of RELX’s LexisNexis subsidiary.

By analyzing the privacy practices of the world’s largest publisher, the report describes how user tracking that would be unthinkable in a physical library setting now happens routinely through publisher platforms. The analysis underlines the concerns this tracking should raise, particularly when the same company is involved in surveillance and data brokering activities. Elsevier is a subsidiary of RELX, a leading data broker and provider of “risk” products that offer expansive databases of personal information to corporations, governments, and law enforcement agencies.

As much of the research lifecycle shifts to online platforms owned by a small number of companies, the report highlights why users and institutions should actively evaluate and address the potential privacy risks as this transition occurs rather than after it is complete.

SPARC’s work in this area seeks to ensure that privacy is foundational to systems for open research.

Read more:

SPARC. (2023, November 7). SPARC Report Urges Action to Address Concerns with ScienceDirect Data Privacy Practices. https://sparcopen.org/news/2023/sparc-report-urges-action-to-address-concerns-with-sciencedirect-data-privacy-practices/

Yoose, B. & Shockey, N. (2023, November 7). Navigating Risk in Vendor Data Privacy Practices: An Analysis of Elsevier’s ScienceDirect. https://zenodo.org/records/10078610