RPOs must provide guidance, training, and adequate infrastructures related to data management and ensure that practices are compliant with legislation and applicable codes of conduct. Specific policies and procedures included in the RIPP must address data protection and privacy and ensure compliance with supranational regulation such as the General Data Protection Regulation (GDPR) of the European Union. The organization must provide adequate infrastructures for secure data collection, storage, retention, archiving, and sharing. Moreover, RPOs must facilitate data management procedures aligned with FAIR principles with a view to making data findable, accessible, interoperable, and reusable.