Information Services Division


Data Safe Haven (DSH)

This service provides a technical solution for storing, handling and analysing identifiable data.

Service updates

Update on performance problems in the Data Safe Haven (25/06/2021)

We have continued to work closely with colleagues in ISD and our third-party vendors to investigate the underlying problem which has been causing poor performance in the UCL Data Safe Haven for the last few months.  This has proved to be a time consuming and complex activity involving multiple teams, technologies and support companies.  Over the last couple of week’s, we have carried out detailed data capture and analysis of performance logs and tested various hypothesis to try to pinpoint the problem.  Yesterday we had a breakthrough and our storage provider has been able to provide a credible and provable reason for what we have been seeing.  We carried out a small scale test overnight to provide evidence that this will indeed provide a solution, which has been successful.  During today we have prepared a plan to carry out remedial work to address this issue and will be starting this work over the coming weekend.  Unfortunately, to prevent lengthy disruption the work will need to be carried out carefully over the course of the next few weeks, and may not be complete until mid-July, but we may see incremental improvements in performance during this period.

We apologise for the disruption and inconvenience this problem has been causing, and would like to reassure you that we continue to prioritise this work.

Please continue to report any issues you encounter to dsh-support@ucl.ac.uk 


Artifactory enables you to securely install packages from the CRAN, PyPi and Conda public repositories in Anaconda and R. These packages must meet a strict policy in order to be allowed in the repositories therefore are deemed to be safe for use in the DSH. This service is available for all DSH users. Please see Data Safe Haven User Guide & FAQs for more details on how to use and configure Artifactory.

For any packages that are not available in these repositories, for example, packages that have been removed but still available in the CRAN archive or any other repository, please continue to request in the normal way using the Software Request self-service form.

DSH Service Portals

File Transfer Portal

Identifiable Data Transfer logo

Portal for secure transfer of data into the Data Safe Haven.

Applications & Data Portal

Application and Data Portal

Portal for secure handling of data using applications available in the Data Safe Haven and Securely transferring data out of the system.

Security & Tokens Portal

Self Service Portal logo

Self Service Portal for Password Management and Token Management. Including In Case of Emergency (ICE Login) Management.

The Data Safe Haven has been certified to the ISO27001 information security standard and conforms to NHS Digital's Information Governance Toolkit. Built using a walled garden approach, where the data is stored, processed and managed within the security of the system, avoiding the complexity of assured end point encryption. A file transfer mechanism enables information to be transferred into the walled garden simply and securely.

Getting started with the Data Safe Haven

Before requesting access to the Data Safe Haven you must complete the Information Governance assurance process.

If you have already completed the Information Governance assurance process you may request access using the self-service forms. Use the search box and the search term 'Data Safe Haven'. Requests can only be made by the Information Asset Owner or their nominated Information Asset Administrator.

Top FAQs

I don't have my hard token, how do I log in?

You can use the In Case of Emergency (ICE) logon procedure to log in even if you do not have your token.

1. Go to the Security & Tokens Portal
2. Click Use ICE logon procedure
3. Enter your DSH User ID and click Continue
4. Select Static Password from the Authenticator drop-down menu
5. Enter your DSH password and click Continue
6. Answer the security questions and click Continue
    (Answers are case-sensitive)

At this stage, you could create a new soft token. Please see the "How to create a soft token" FAQ for instructions.

7. Click Emergency
8. Click Request
9. Click Submit (you can not change this value)

Note: Your emergency code is displayed under the Code column. It will expire when used, or after 24 hours.

10. Go to the Application & Data Portal
11. Enter your DSH User ID and DSH Password
12. Enter the 8 digit emergency code

How do I create a soft token?

Install the "DeepNet MobileID" app on your smartphone, it is free and can be found on most app stores.
1. On your smartphone, launch App Store (iPhone) or Play Store (Android)
2. Search for ”MobileID” or ”Deepnet MobileID” and install it 

Create Token
1. Log in to the Security & Tokens Portal
2. Click the My Tokens tab and then click Create
3. On the Product drop-down list select MobileID/Timed-Based and click Submit
4. Assign a unique PIN to the new token by clicking the green down arrow on the row of the newly created token and select Reset PIN
5. Enter a new 4 digit PIN in the top text box, type it again in the Confirm text box and click Submit
4. Receive the token by clicking the green down arrow again, select PUSH and then click Email
You will be sent an email shortly with the subject line "DSH - Your Token (MobileID)", follow the instructions in the email to add the token to the MobileID app