What must a researcher do promptly after an unexpected theft of identifiable study data?

The responsibility to report an unexpected theft of identifiable study data falls primarily on the institutional review board (IRB). Prompt reporting to the IRB is essential as they are tasked with ensuring the protection of participants involved in research studies. The IRB will assess the impact of the data theft on participant privacy and confidentiality, and it may initiate a review of the study's compliance with ethical standards. This allows the IRB to evaluate the severity of the breach, determine necessary actions, including potential notifications to participants and other authorities, and ensure the continued safeguarding of participant data.

Reporting to the IRB is not only a procedural requirement but also a critical step in managing the implications of a data breach, ensuring transparency in the research process and maintaining trust with participants. Hence, addressing this issue swiftly through the IRB is vital for upholding ethical standards in research.