...
| Note |
|---|
...
| eduroam |
...
The basic principle underpinning the security of eduroam is that the authentication of a user is carried out at his/her home institution (Identity Provider, IdP) using the institution’s specific authentication method. The authorisation required to allow access to local network resources is carried out by the visited institution (Service Provider, SP).
Thus the eduroam roaming consortium is comprised of many legal entities: (N)ROs, IdPs and SPs. (National) roaming operators ((N)RO) are entities that operate the eduroam service for a country or economy and coordinate the activity of IdPs and SPs at the respective teritory.
GÉANT is the body which is responsible for the international coordination and interoperability of eduroam. As such GÉANT operates a number of services for the eduroam consortium (from the technical infrastructure at the European level to supporting services aimed for the world-wide comunity).Those services are maintained by eduroam Operations Team (OT). This privacy policy concerns part of the eduroam consortium that is operated and maintained by GÉANT including, but not limited to, the following services: the European level authentication proxy infrastructure, the eduroam database, the eduroam Configuration Assistant Tool (CAT), the eduroam F-ticks traffic measurement, portal with technical information about the service monitor.eduroam.org, eduroam wiki and website.
...
Why We Process Personal Data
We process various data in order to provide the eduroam service and to ensure the quality of services we provide and to improve and protect them. The eduroam service is designed in a way that we don't need to know end user identity in order to provide the service: partners within eduroam federations can anonymise potential end user's private data. We give advice and guidance to the community that recommends the highest levels of anonymity of data in all deployments.
We also collect data related to National Roaming Operators (NRO) to help support the administration of the service through a contacts database.
What Personal Data We Process
As part of the eduroam service, we process the following data:
...
Who Do We Share Data With?
Personal data gathered for website statistics is only shared within the GÉANT Association and the eduroam Operational Team for analysis and reporting.
All other data is held and processed only by the eduroam OT. (is this true?)
Personal Data Retention
Analytical data for website statistics is currently retained permanently.
All data related to roaming are kept for a period of six months, unless a different requirement is set by legislation in individual European countries.
...
- You have the right to complain to the Supervisory Authority (Autoriteit Persoonsgegevens at https://autoriteitpersoonsgegevens.nl) about our data processing activities.
Contact Information
...
Data Protection Officer
GÉANT Association
Hoekenrode 3
1102 BR
Amsterdam – Zuidoost
Netherlands
Telephone number: +31 20 530 4488
email: gdpr@geant.org
...
Netherlands
Dutch Data Protection Authority
Autoriteit Persoonsgegevens
Postbus 93374 2509 AJ DEN HAAG.
Telephone number: (+31) - (0)70 - 888 85 00.
...
| privacy notice is published at: https://www.eduroam.org/privacy/ |