GDPR aspects

If you are going to invite people to a collaboration, and connect applications to the collaboration, personal data will be processed by the collaboration and be passed by the collaboration to any connected applications. The organisation the collaboration resides under in SRAM is responsible for the collaboration. Please make sure you, and the person that is going to be administrator for the collaboration in SRAM, understand their GDPR responsibility. If in doubt, please check with your SRAM Organisational administrator or privacy officer etc. Taking care of GDPR aspects is not specific to using SRAM: if you would be setting up a research collaboration without using SRAM, you would just the same be processing personal data by inviting members, creating accounts in research applications for members of the collaboration etc. The SRAM Privacy Policy explains the role of the collaboration and institution in processing information.

AARC blueprint architecture

Are you looking for an example acceptable use policy, privacy policy etc for the research collaboration? Apart from any templates your organisation might provide, you might also want to check the EU AARC Policy Development Kit.