Skip to content

Controlled Data Access

Some studies submitted to ImmPort contain sensitive clinical or genomic data that require access controls beyond standard ImmPort registration. For these studies, data access is managed through AccessClinicalData@NIAID (ACD) — the NIAID AccessClinicalData@NIAID Access System — rather than directly through ImmPort.

This applies to both existing controlled datasets (e.g., IMPACC studies SDY1760 and SDY2112, which are being migrated to ACD effective May 20, 2026) and new controlled datasets submitted to ImmPort going forward.

Note

The majority of ImmPort studies are openly available to any registered ImmPort user. Only studies explicitly designated as controlled-access require the process described on this page.

Background: NIH Controlled-Access Data Repository Policy

ImmPort (Private) is listed as an NIH Controlled-Access Data Repository (CADR) as defined in NIH Notice NOT-OD-25-159Required Security and Operational Standards for NIH Controlled-Access Data Repositories. Under this policy, access to controlled data in ImmPort is managed through the NIAID AccessClinicalData@NIAID (ACD) Access System, which enforces:

  • Identity Assurance Level 2 (IAL2) identity verification, as required by the NIH CADR standards
  • Data Access Request (DAR) prospective review by federal employees
  • Data Use Agreement (DUA) execution prior to data access

For the full list of NIH CADRs and applicable requirements, see the NIH Requirements for Controlled-Access Data Repositories and Users.

How Controlled Data Works in ImmPort

Studies with sensitive data can still be submitted to ImmPort through the normal data submission process. However, access to those datasets is governed and fulfilled through ACD, not ImmPort directly.

The workflow is:

  1. Investigator submits study data to ImmPort as usual
  2. The study is flagged as controlled-access in ImmPort
  3. The dataset is made available through ACD
  4. Researchers discover the study in ImmPort, then go to ACD to request access
  5. ACD handles IAL2 identity verification, DAR review, DUA execution, and secure data download

ImmPort is not a controlled-access download portal. ACD is the designated NIH CADR access system for all ImmPort controlled data.

What is AccessClinicalData@NIAID (ACD)?

AccessClinicalData@NIAID (ACD) is the NIAID-managed access system for controlled clinical research data. It serves as the access management system for ImmPort controlled datasets under the NIH CADR framework and manages:

  • IAL2-compliant identity verification — required per NIH CADR standards (NOT-OD-25-159)
  • Data Access Request (DAR) submission and review by federal employees
  • Data Use Agreement (DUA) execution
  • Secure data download post-approval

How to Request Access to a Controlled Study

Step 1 — Create an ACD Account

Visit https://accessclinicaldata.niaid.nih.gov — logging in will automatically create your account.

Supported login methods — IAL2 required

ACD enforces Identity Assurance Level 2 (IAL2) per NIH CADR policy (NOT-OD-25-159). Accepted login options:

  • ID.me
  • Login.gov
  • NIH email account

Gmail and other personal email accounts are not accepted. These requirements come from the NIH Office of Science Policy.

If you need help setting up a supported login account, contact accessclinicaldatasupport@mail.nih.gov.

Step 2 — Locate the Study

Search for the study by ImmPort accession number (e.g., SDY1760) or by disease/condition on the ACD platform. Controlled studies in ImmPort will display a link to their ACD study page.

Step 3 — Submit a Data Access Request (DAR)

Click Request Access on the ACD study page and complete the DAR form:

  • Institutional affiliation
  • Description of intended research use
  • Review and signature of the Data Use Agreement (DUA)

Step 4 — Await Approval

DARs are reviewed by the study's data access committee using federal employees, as required under the NIH CADR framework. You will be notified by email when approved or if additional information is required.

Step 5 — Download the Data

Once approved, log back into ACD to download the study files securely.

Data Access Request (DAR) Policy

  • DARs are valid for 12 months and must be renewed annually
  • A new DAR must be submitted each year for continued access
  • Active, unexpired ImmPort-based access for IMPACC studies will be honored in ACD — a new DAR is not required if your current approval has not expired. After creating your ACD account, contact ImmPort or ACD support to have your existing access transferred.
  • If your prior ImmPort-based access has expired, you must submit a new DAR through ACD
  • Users approved prior to February 25, 2026 should secure data according to the terms of their existing agreement until project close-out or renewal, per NOT-OD-25-159

Currently Controlled Datasets

ImmPort Accession Study Status
SDY1760 IMPACC — Immunophenotyping Assessment in a COVID-19 Cohort Migrating to ACD — May 20, 2026
SDY2112 IMPACC — Extended Cohort Migrating to ACD — May 20, 2026

For full details on the IMPACC studies, including migration FAQs, see the IMPACC Study Access page.

Support

Issue Contact
ACD login account setup or access issues accessclinicaldatasupport@mail.nih.gov
Dataset access issues after migration accessclinicaldatasupport@mail.nih.gov
General ImmPort questions ImmPort_Helpdesk@immport.org