UTorino2

UNITA VIRTUAL CAMPUS GDPR

For the UNITA Federative Login and the proper functioning of services offered by the UNITA VIRTUAL CAMPUS ie. #UVC, we need to process your personal data from your home institution, that we receive via EDUGAIN on our Service Provider. We take all reasonable care to ensure that your personal data is processed safely.

1. UNITA Federative Login

When you login to the service via Federated Login (Shibboleth), the following personal data is processed:

  • Data received from user’s home organization:
    • SAML persistent identifier (attribute: eduPersonTargetedID) - unique ID to identify the user
    • Alternative identifier (attribute: eduPersonPrincipalName)
    • User’s name (attributes: displayName, sn, givenName)
    • User’s email (attribute: mail)
    • User’s affiliation within the home institution (attribute: eduPersonScopedAffiliation)
  • Other data gathered from the user:
    • In case the home organization does not provide some of the requested attributes, the user might be requested to provide the missing information in order to use certain functionality, or otherwise this functionality may not be available to the user.
    • In case user makes use of personalization functionality (e.g. store personalized workspace settings)
    • In case the user is contributor to the resources (work in a collaborative environment) all the changes are tracked
  • General network traffic data (like IP address) is logged and is used in anonymized usage statistics. The tool for processing the analytics is Matomo.

2. UNITA Services

A unique user identifier (JWT Token) is needed to recognize the federated user over sessions, to be able to associate user-related information (customization, authorization settings, user-generated content).

The identification of the user as well as the affiliation information serves as a means to determine the authorization to access protected resources (which may be granted to certain groups, like members of an institute or partners in a project).

Attributes concerning user's name are used in communication with the user (via e-mail and on the website) and for marking user's contribution. If the requested attributes are obtained, they are used by default, the user still has the possibility to change the display name.

The user's affiliation can be used for managing access to resources (authorization), e.g. if access to a resource is granted to members of an institute. If no information about affiliation is available, user-based authorization is used.

3. UNITA Office Contact

For more information about data security and the UNITA Service Provider, please contact our Data officer ionut.dragoi@e-uvt.ro with cc to unita@e-uvt.ro


Capture