... | ... | @@ -22,44 +22,44 @@ andrea.ceccanti@cnaf.infn.it |
|
|
|
|
|
Tel: +39 051 6092845
|
|
|
|
|
|
## The purpose of the processing of personal data
|
|
|
|
|
|
The INDIGO IAM service provides a central service for authentication and authorization management for INDIGO-Datacloud services.
|
|
|
Personal data and log files are used for:
|
|
|
- User authentication and authorization at the service or at trusted INDIGO services
|
|
|
- Automated sending of email messages necessary for use of the service
|
|
|
- Statistics and development of the service
|
|
|
- Integration testing
|
|
|
|
|
|
[iam-test]: https://iam-test.indigo-datacloud.eu
|
|
|
|
|
|
|
|
|
## Processed data
|
|
|
|
|
|
The following personal information is requested from the Identity Provider server of your home organisation every time you log in to the service:
|
|
|
- Name
|
|
|
- Email address
|
|
|
- Unique ID used to identify the user (eduPersonPrincipalName)
|
|
|
- Unique ID used to identify the user (eduPersonPrincipalName or SAML persistent ID/eduPersonTargetedID. )
|
|
|
- Affiliation (eduPersonScopedAffiliation)
|
|
|
|
|
|
## Retention of personal data
|
|
|
|
|
|
Personal data is stored until the user asks to be removed from the service by interacting with the contact person for the service.
|
|
|
|
|
|
## Principles of protecting personal data
|
|
|
## Purpose of the processing of personal data
|
|
|
|
|
|
Transport Layer Security (TLS) technology is used to protect personal data in transit over the network.
|
|
|
At the service, personal data is protected by personal user accounts and authorisation of administrators. The service sits behind a firewall and security updates are constantly applied by the service administrators.
|
|
|
The INDIGO IAM service provides a central service for authentication and authorization management for INDIGO-Datacloud services.
|
|
|
Personal data and log files are used for:
|
|
|
- User authentication and authorization at the service or at trusted INDIGO services
|
|
|
- Automated sending of email messages necessary for use of the service
|
|
|
- Statistics and development of the service
|
|
|
- Integration testing
|
|
|
|
|
|
## Regular disclousure of personal data to third parties
|
|
|
|
|
|
Personal data is not regularly disclosed to third parties.
|
|
|
|
|
|
## Data retention
|
|
|
|
|
|
Personal data is stored until the user asks to be removed from the service by interacting with the contact person for the service.
|
|
|
|
|
|
## Transfer of personal data outside the EU or EEA
|
|
|
|
|
|
Personal data shall not be transferred outside the European Union or the European Economic Area.
|
|
|
|
|
|
## Access
|
|
|
## How to access, rectify and delete the personal data
|
|
|
|
|
|
Get in contact with the contact person for the service.
|
|
|
To rectify the data released by a Home Organisation, contact that Home Organisation's IT helpdesk.
|
|
|
|
|
|
## Data protection code of conduct
|
|
|
|
|
|
Personal data will be protected according to the [Code of Conduct for Service Providers][code-of-conduct], a common standard for the research and higher education sector to protect the user's privacy.
|
|
|
|
|
|
|
|
|
[iam-test]: https://iam-test.indigo-datacloud.eu
|
|
|
[code-of-conduct]: http://geant3plus.archive.geant.net/uri/dataprotection-code-of-conduct/v1/Pages/default.aspx |
|
|
\ No newline at end of file |