User access tokens

[Sigrid Kelsey]

Hi all, 

I've asked our ITS department to set up the ORCID log-in or connect button using the member API, and they have a few questions/ concerns I'm hoping to get some help with from here:

1. Concern about storing ORCID User access tokens on our server, as we could run into policy issues. Can anyone tell me exactly what personal identification is stored in the user access tokens, and if anyone has dealt with policies against storing it?

2. They have asked for a documented plan with the overall goal, requirements, and notes on how to meet those requirements.  I've already written one, but if anyone has written something and you're willing to share, please do. 

thank you, 

Sigrid Kelsey

LSU

[rasool rahmani]

--
You received this message because you are subscribed to the Google Groups "ORCID API Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to orcid-api-use...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/orcid-api-users/44709aa9-af2e-4693-b47c-0e9cc7cc028an%40googlegroups.com.