Default "email" privacy level to "limited"
I am working in entegrating an external service to ORCID, by letting local users authenticate via ORCID's OAuth.
Since we keep track of user email address, it would be extremely handy if by default email addresses were available in ORCID's profile, so that third party services like ours could match local users with existing profiles.
We’d like to update on this suggestion:
It is unlikely that we will set the default email visibility to allow trusted parties to view it. However, we will soon be working on a feature to allow clients to request permission to access the individual’s email address, even if that address is normally hidden. You can follow the progress on this on our Current Development Trello board at:
ORCID Community Team
This is a great suggestion, but one that needs review before we can act on it. As ORCID is an international undertaking we have to comply with privacy regulations in numerous countries, some of which affect how we are able to share email address, even with trusted parties.
Gerry Lawson commented
I'd back this strongly - but would suggest that it can be decided on a country by country basis (and the country field should be mandatory for new registrants). I suggest this because Research Councils UK would like to use the ORCID API to collect 'public' and 'Restricted to RCUK' emails - which in turn we can use to allow researchers to be contacted from the RCUK "Gateway to Research System"
Matthew Cockerill commented
I completely agree with this - conventionally researchers share their email address through their publications and through institutional addressbooks, so some level of default accessibility of email info (either public, or to members for lookup purposes) makes sense in terms of discoverability.