Differenze tra le versioni di "Privacy Policy EN"

Da WIKI IDEM GARR.
Jump to navigation Jump to search
Riga 24: Riga 24:
 
* ePPN (O) to obtain writing access (permitted ony to IDEM commitees members and GARR staff), <br>
 
* ePPN (O) to obtain writing access (permitted ony to IDEM commitees members and GARR staff), <br>
 
* mail (O) to receive notification by the system<br>
 
* mail (O) to receive notification by the system<br>
* cn | (givenName & sn) (R) to customize the gui interface for the user
+
* cn OR (givenName & sn) (R) to customize the gui interface for the user
 
|-
 
|-
 
!Purpose of the processing of personal data
 
!Purpose of the processing of personal data

Versione delle 15:03, 11 mar 2016

Name of the service IDEM WIKI
Description of the service A collaborative platform for IDEM bodies and day by day operations of IDEM Federation. It provides a lot of information from IDEM bodies about the running of IDEM Federation. Anonymous users can read only some pages, tipically the archives.

Authenticated users can read all the pages. Writing is permitted only to authorized users, tipically the commitees' members and the GARR staff.

Data controller and a contact person Consortium GARR, info @ garr.it
Jurisdiction IT, Italy
Personal data processed

1. For all users

  • IP address
  • Referrer address (the web page a user is coming from)

2. For authenticated users
Following data is retrieved from your Home Organisation:

  • your unique user identifier (SAML persistent identifier) ePTID (R) to obtain reading access,
  • ePPN (O) to obtain writing access (permitted ony to IDEM commitees members and GARR staff),
  • mail (O) to receive notification by the system
  • cn OR (givenName & sn) (R) to customize the gui interface for the user
Purpose of the processing of personal data The IP and referrer addresses of all web page visitors are stored in the web server log file for statistical purposes (e.g. to find out from which countries users are accessing the wiki) and for accountability (e.g. in case of misuse of the wiki).

For authenticated users, personal data is used to identify users (who applied which changes to which page), for access control (e.g. only authenticated users can edit wiki pages), for customization (personal preferences) and to (optionally on request) notify users in case a wiki page changed.

Third parties to whom personal data is disclosed No raw data will be released to third parties.

Authenticated users editing wiki pages must be aware that their name and potentially email address are visible to other users of the wiki.

How to access, rectify and delete the personal data Contact system.support @ garr.it.
To rectify the data released by your Home Organisation, contact your Home Organisation's IT helpdesk.
Data retention When the user record is going to be deleted or anonymised? Remember, you cannot store user records infinitely. It is not sufficient that you promise to delete user records on request. Instead, consider defining an explicit period.
Personal data is deleted on request of the user or if the user hasn't used the service for two years.
Data Protection Code of Conduct Your personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect your privacy.

This privacy policy is based on the Data protection Code of Conduct Privacy policy guidelines for Service Providers