Template: Transfer of personal data to SLU Idportal when using federated login (Privacy Policy)
Description of SLU Idportal
SLU Idportal is a service directed towards users at SLU.
Service allowing students and employees to activate their account and confirm identity using eduID
Processing of personal data
Transfer of personal data
Personal data are being transferred from the identity provider (your login service) to the service to ensure that you as a user have access to your information in the service and to provide you with a user-friendly interface.
When logging in to this service, the following personal data are requested from the identity provider you use:
Personal data | Purpose | Thechnical representation |
---|---|---|
Identity number | Connect the user from to an existing account at SLU. | norEduPersonNIN |
Date of Birth | To use for matching the user to an existing account at SLU if identity number is missing. | schacDateOfBirth |
Given name | Used together with date of birth. | givenName |
Surname | Used together with date of birth. | sn |
Validated email addresses | Used together with date of birth. | mail and mailLocalAddress |
Assurance level | Determine assurance level for the account at SLU. | eduPersonAssurance |
eduID user identity. | Used to store and reuse identity connection. | eduPersonPrincipalName. |
In addition to direct personal data, indirect personal data are also transferred, such as which organisation the user belongs to and which identity provider that has been used when logging in. This information is not used by the login service more than for technical logs
Other processing of personal data within the service
The service saves technical logs for troubleshooting and security related incidents. These technical logs contain information about all logins made incl. ip number.
Transfer of personal data to third parties
No personal data are transferred to third parties.
Lawful basis
Personal data is handled based on the lawful basis of public interest. The personal data must be transferred to give users access to their account at SLU.
Right of access, right of rectification and right of erasure of personal data
No personal data is saved in the service. Its only use is to identify the correct SLU account.
For access, rectification and erasure of your personal data, contact the Personal data controller.
Rectification of personal data that was transferred at the moment of login has to be done in the identity provider that you use to log in. This information is corrected in the service at the moment of the first login after the personal information has been corrected in the identity provider.
Purging of personal data
Access controll log is stored using UserId
Social security number is not stored.
Personal data controller
Personal data controller for the processing of personal data is SLU, Sweden. If you have questions about how personal data are processed within the service, please contact support@slu.se
Contact information for SLU data protection officer can be found here
REFEDS Data Protection Code of Conduct(CoCo v2)
This service complies with the international framework REFEDS Data Protection Code of Conduct for the transfer of personal data from identity providers to the service. This framework is intended for services in Sweden, the EU and the EEA that are used in research and higher education