Versions Compared

Old Version 2

changes.mady.by.user Nicole Harris

Saved on

compared with

New Version Current

changes.mady.by.user Marina Adomeit

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Note
eduroam privacy notice is published at: https://www.eduroam.org/privacy/

Description of the eduroam Service

The eduroam  service do we have a standard description?

The eduroam roaming consortium is comprised of many legal entities. GÉANT is the body which is responsible for the international coordination and interoperability of eduroam. As such GÉANT operates a number of services for the eduroam consortium on the European level, some of which store data about ongoing usage by end users. Those services are maintained by eduroam Operations Team (OT). This privacy policy concerns part of the eduroam consortium that is operated and maintained by GÉANT including, but not limited to, the following services: the European international authentication proxy infrastructure, European F-Ticks collection and the eduroam Configuration Assistant Tool (CAT)

GÉANT is the body which is responsible for the international coordination and interoperability of the eduroam within Europe, and operates a number of services for the eduroam consortium globally. These central services are maintained by eduroam Operations Team (OT). This privacy policy concerns part of the eduroam consortium that is operated and maintained by GÉANT including, but not limited to, the following services: detail here.

We are fans of privacy, and we are proud to say that eduroam was designed for minimal disclosure of end users personal data.. The design of the system provides and favours the end user anonymization, i.e., a possibility to hide the end user’s identity from any third parties, including providers of the eduroam network access (Service Providers). The consortium's technical foundations have a built-in support for end user privacy throughout the authentication process. For all intermediate supporting services, like routing of authentication requests and F-Ticks (log format for distributed federations),  we strive towards knowing *nothing* about the actual identity of an end user, while still maintaining log traces which allow for debugging and monitoring of usage statistics.

Why We Collect Personal Data

We collect and process various data in order to provide the eduroam service and to ensure the quality of services we provide and to improve and protect them. The eduroam service is designed in a way that we don't need to know end user identity in order to provide the service: partners within eduroam federations can anonymise potential end user's private data.  We give advice and guidance to the community that recommends the highest levels of anonymity of data in all deployments. 

We also collect data related to National Roaming Operators (NRO) to help support the administration of the service through a contacts database. 

What Personal Data We Collect and Process

As part of the eduroam service, we collect and process the following data:

...

Who Do We Share Data With?

Personal data gathered for website statistics is only shared within the GÉANT Association. (do we collect any data on eduroam cat stats etc?).

All other data is held and processed only by the eduroam OT.  (is this true?)

Personal Data Retention

Analytical data for website statistics is currently retained permanently.

All data related to roaming are kept for a period of six months, unless a different requirement is set by legislation in individual European countries. 

...

Contact Information

...

Data Protection Officer

GÉANT Association
Hoekenrode 3
1102 BR
Amsterdam – Zuidoost
Netherlands
Telephone number: +31 20 530 4488
email: gdpr@geant.org

...

Netherlands

...