Data use agreements (DUAs) are legally binding contracts between data providers, users, and their institution that detail how data must be transferred, used, and disposed of.
Data Security/Protection plan is a separate, supporting document that usually must be submitted in addition to the DUA (plus any other supporting documents, such as IRB approval, research proposal, researcher CV, etc). They include requirements for how the users' technology must be configured and how their work spaces must be regulated. Before you apply to work with data from a provider, it is vitally important to work closely with IT services within your local department or college to determine if these requirements can be met and are consistent with University policy.
Applying to work with data from a provider
The Population Research Institute has data enclaves available for it affiliated faculty. However there is no centralized facility currently for unaffiliated researcher at Penn State.
Virtual Data Enclave
Data providers are experimenting with virtual machine technology that will allow a researcher access to a virtual private network on a machine. However, this still makes it necessary to make sure a secure environment exist to use the data.