Having confidence that ORCID will:
  • Provide unique person identifiers
  • Respect my privacy by letting me decide what information is associated with my iD
  • Be clear and consistent about how I control access to my information
  • Allow me to decide who has access to what information and to change those permissions at any time
  • Follow the data protection rules in my country

We work hard to ensure that you are proud to associate your ORCID iD with your name, and confident about using it in the systems and services you encounter. Individual ownership and control over your ORCID iD is one of ORCID’s core principles. As a user, you control what information is connected to your iD and who has access to your data. ORCID works with the community to ensure that best practices are employed in collecting ORCID iDs, and that our privacy and data control practices ensure that you always maintain control of your record.

You. Not someone like you.

Names are complex. The same name can refer to different people, and one person can have many names. ORCID provides you with a unique digital identifier or “name” that you can use throughout your career as you share ideas, join new organizations, or use research facilities. You register for your own identifier, use it, and manage the connections between your identifier and your work.

Who can have an ORCID iD?

Anyone in the research community can register for an ORCID iD! The definitions of “researcher”, “scholar”, and “contributor” evolve over time, and vary from field to field. Rather than have a rigid, and likely incomplete, definition of who would “qualify” for an iD, ORCID enables everyone who finds benefit from using the ORCID Registry to be able to obtain and use an ORCID iD. To further remove barriers, the Registry is translated into several languages. ORCID does not charge individual users a fee for creating or maintaining their ORCID record, or exporting data. We work with individuals and organizations across disciplines and sectors to ensure that iD-holders can connect their iD to their affiliations and contributions.

ORCID privacy principles

  • You own your ORCID iD and record
  • You control who accesses the information in your ORCID record
  • You may change access preferences at any time
  • You may close your ORCID account at any time
  • Organizations may add, update, or remove information in your ORCID Record only if you have granted permission for them to do so

Only relevant data

ORCID limits the types of data that are included about you.

The data that ORCID collects and holds

The data stored in the ORCID Registry consists of information that you, as a user, have provided or your authorized trusted individuals or organizations have added with your permission. Other than the identifier itself, we do not require information in an ORCID record to be publicly accessible.

When registering for an ORCID iD, only three items are required:

  • Your given name - this is included in your public ORCID record initially, but you may make it private at any time. We encourage, but do not require, inclusion of a family name.
  • Your email address - this is hidden from others initially, but you may choose to share it with others including the public. We encourage, but do not require, you to validate your email, include additional email addresses, and choose a primary email for the purpose of receiving messages you choose.
  • A password - this is encrypted before being stored in our database through a “salted one-way hash”, a secure encryption method. To verify your a password when you sign in, we apply the same encryption process and compare it to what is stored in our database.

In addition to these required fields, an individual ORCID record may include the following information:

  • Biographical information, such as your name variations in any language, keywords, country/ies where you do your work, websites, person identifiers from other systems, and/or a short biography.
  • Affiliation information, such as the post-secondary schools you attended and/or places you have worked.
  • Funding information, such as the grants, contracts, and/or awards that you have received or contributed to.
  • Research contributions, such as publications, creative works, videos, compositions and publications, data sets, peer reviews, conference presentations, patents, software, and/or dissertations and theses that you have authored, led on, or contributed to.

The data NOT collected or held by ORCID

ORCID does NOT collect or store other identifying or sensitive information such as date of birth, gender, credit card numbers or other financial information, medical information, physical address, phone numbers, social security numbers, passport, or national identity numbers. There are no fields in the ORCID data structure to hold any of this information.

Your data, controlled by you

It is an ORCID principle, protected by our bylaws, that you control your own ORCID record. Our systems are designed so that nothing can be added to your ORCID record without your explicit consent. As a user, you have fine-grained control over the visibility of information in your ORCID record, and may change visibility, share, or remove information in it at any time. Our internal policies and practices prevent us from sharing information in any way other than how you specify or you agree to under our privacy policy. For example, we are unable to answer questions about you that would require us to share data that you have not made publicly available in the ORCID registry.

We work with the community to use authenticated workflows for requesting ORCID iDs and permissions to access ORCID records. This means that your iD can be connected to an activity, idea, or organization only with your direct permission. This is not only in line with best practices for data security, but also ensures data quality and enables users to opt into auto-update functionality.

International policies to support our values

ORCID is an international organization, with users throughout the world and members in each region. We are aware that values and community norms regarding data collection, use and privacy vary from country to country, and recognize that is important that our policies and practices reflect our scope. We consult with an international group of data security and privacy experts on data protection and privacy, and we engage external counsel and auditors to review our policies and practices. Details about how ORCID handles user information can be found in our Privacy Policy. We have established Dispute Procedures to manage questions about data accuracy. Our privacy policy is certified annually by an independent third-party organization. Questions about this policy may be addressed by ORCID or this independent organization. Learn more about ORCID’s policies.