Versions Compared

Old Version 13

changes.mady.by.user Nicole Harris

Saved on

compared with

New Version Current

changes.mady.by.user Marina Adomeit

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • When you roam and visit other countries, or as a user of the eduroam Managed IdP service, the European proxy servers will receive and log the following data: your realm (denoting your institution and federation) and MAC addresses. We can also receive your username if you have not chosen to anonymise this data (eduroam Managed IdP always uses opaque usernames). When you roam to another institution within your home country the European proxy servers don’t receive any data because they are not included in that process.  The service has a legitimate interest in processing this information.
  • When you roam and visit other countries or other institutions within your federation we may also process for monitoring, measuring and reporting services, in addition to the data mentioned above, the data about visited country, visited institution and authentication outcome. The service has a legitimate interest in processing this information.
  • As part of supporting activities we maintain several public web sites (e.g. web site of the Configuration Assistant Tool - CAT service https://cat.eduroam.org)  of) where we collect normal web server logs, i.e. timestamp of access, IP address which requested the page, the page being requested, the HTML result code, etc. The data collected is for the purpose of troubleshooting and debugging potential problems of with eduroam web servers and therefore the service has a legitimate interest in processing this information.
  • The eduroam Operational Team maintains a database where we collect data that may include namee-mailphone number of the NROs, IdPS and SPs contacts to enable supporting services and improve incident response and user support. The data is provided by the NROs based on the eduroam Policy Service Definition. eduroam strongly advises NROs to use the function contacts rather than the personal ones.
  • To ensure proper functioning of the eduroam Configuration Assistant Tool (CAT) and of the eduroam Managed IdP service we collect the identifiers and e-mail addresses of the NRO and IdP administrators responsible for the configurations that will be used by the end users. The service has a legitimate interest in processing this information.
  • The eduroam Managed IdP system also stores an arbitrary identifier for you (given by the IdP administrator), and maintains pseudonyms of that identifier for the actual eduroam access credentials. It also stores information about successful authentications linked to those pseudonyms. This processing is part of the contractual requirements for eduroam Managed IdP as part of service delivery.
  • Your IdP administrator for eduroam Managed IdP may choose to send you an invitation link via SMS or e-mail.  We will process this data in order to send you the invitation link but the data will not be stored. 

Who Do We Share Data With?

...

Personal data stored as part of your credentials issued via eduroam Managed IdP are kept as long as you use those credentials for eduroam access, and until they are removed by the IdP administrators. SMS or e-mails processed in order to send you invitation links are not retained.

Security

We support the following processes to ensure the security of your data:

...