HomeGuidelines for Security Control of Government-Funded National Core Science and Technology Research Projects Administered by Academia Sinica
Approved on April 2, 2024
Amended on February 20, 2025
Amended on February 20, 2025
- To control the administration of relevant research projects and to protect the security of high-tech research and development outcomes and data, Academia Sinica (AS) has established the Guidelines for Security Control of Government-Funded National Core Science and Technology Research Projects Administered by Academia Sinica (the Guidelines) in accordance with the Government-Funded Science and Technology Research Projects of National Core Security Controls Operations Manual (the Security Control Manual) formulated by the National Science and Technology Council.
- Definitions:
- National core technology: An advanced technology and relevant research outcomes or data that, if illegally transferred abroad or to mainland China, Hong Kong, or Macau, would jeopardize national security or impair the competitive advantage of the national economy.
- Government-funded national core science and technology research projects: A project that is funded by the government and falls within the scope of national core technology; such a project is also abbreviated as a national core technology research project.
- National core technology data: The knowledge, theories, formulas, models, data, experimental records, processes, technologies, design diagrams, samples, and equipment generated or enhanced by the participants of a national core technology research project during its administration. National core technology data must be kept confidential.
- National core technology research and development outcomes: The research and development results of national core technology research projects.
- Confidentiality regulations and duration for controlled projects:
- Controlled projects: Projects that are designated as national core technology research projects by government funding agencies.
- Importance level: In accordance with the provisions of the Security Control Manual, national core technology research projects are classified as either Level A and Level B projects. The classification level of a project is determined by the relevant government funding agency at the time of project approval.
- Confidentiality regulations for researchers: The principal investigator and research personnel participating in a project must adhere to confidentiality obligations and take the necessary confidentiality measures as stipulated in the Security Control Manual. They must sign a confidentiality agreement as specified by the government funding agency (see Appendix 1 for exceptions specified by the funding agency). The principal investigator will distribute the confidentiality agreement to the relevant research personnel to obtain their signatures. Upon completing this process, the principal investigator submits the original copies to AS for record-keeping. New members of an ongoing project must promptly sign the confidentiality agreement upon joining. AS will compile a list of participating personnel and will notify AS's Department of Information Technology Services to implement enhanced control measures aimed at addressing national cybersecurity concerns. The participation of foreign nationals in a national core technology research project must be approved by the relevant government funding agency, and AS shall submit relevant documentation to the agency for approval.
- Control period: The control period for a project is determined in accordance with the contract or project administration agreement.
- Regulations related to events for disclosing research and development outcomes and data pertaining to national core technology research projects:
- General Level A national core technology research projects: At least 21 days before an event, the Principal Investigator must complete the Application for Disclosure of Government-Funded National Core Technology Research and Development Outcomes (Appendix 2). After the application is approved by the unit head, it is submitted to AS, which then forwards it to the relevant government funding agency for review.
- General Level B national core technology research projects: At least 14 days before an event, the Principal Investigator must complete the Application for Disclosure of Government-Funded National Core Technology Research and Development Outcomes (Appendix 2). After the application is approved by the unit head and endorsed by the AS President or authorized personnel, the event may be held. The application must be sent to the relevant government funding agency for record-keeping one week before the start of the event.
- Projects involving technical collaborations, technology transfers, foreign investments, and patent applications: The Principal Investigator must complete the Application for Disclosure of Government-Funded National Core Technology Research and Development Outcomes (Appendix 2). After the application is approved by the department head, it is submitted to the Agency, which then forwards it to the relevant government funding agency for review.
- For all public disclosure events, a post-event report must be submitted. The project Principal Investigator will complete the Report on Event for Disclosing Government-Funded National Core Science and Technology Research Project Outcomes (Appendix 3). After the report is approved by the unit head, it will be submitted to AS, which then forwards it to the relevant government funding agency for record-keeping.
- Review and analysis of disclosure events: Every six months, the Principal Investigator must conduct a review of the implementation status and data of project research, and must disclose it by completing the Review Report on Disclosure of Government-Funded National Core Technology Research and Development Outcomes (Appendix 4). This report must be submitted within 15 days after the end of each six-month period (by January 15 and July 15 of each year). After the report is approved by the unit head, it will be submitted to AS, which then compiles and completes the Register of Disclosure Events for National Core Technology Research and Development Outcomes (Appendix 5) and sends it to the relevant government funding agency for record-keeping.
- Contracts and reports for national core technology research projects must be submitted to government funding agencies as confidential documents. Other activities not related to project content, such as the submission of invoices, hiring of assistants, extensions, implementation of budget changes, and reimbursements, shall be processed in accordance with standard procedures.
- Response to security breaches: In the event of a suspected breach of confidentiality or an intentional or unintentional leak, loss, or theft during a disclosure event involving the research and development outcomes and data of a national core technology research project, action shall be taken in accordance with the Classified National Security Information Protection Act, Directives for Confidentiality of Technology Data, and the relevant provisions in the Security Control Manual. Furthermore, immediate remedial actions must be taken, and AS must inform the corresponding government funding agency of the breach. After addressing a breach, the Principal Investigator must complete the Notification Form for Breach of Confidentiality Involving Government-Funded National Core Technology Research and Development Outcomes (Appendix 6) and submit it to AS, which will then forward it to the relevant government funding agency.
- For matters not covered in these Guidelines, actions shall be taken in accordance with the Security Control Manual and relevant regulations.
