eduID.it
Login

eduID.it

Information on the processing of personal data

Name of the service

eduID.it
Description of the service

Home Organization federated authentication service.
Data Controller

The data controller is your Home organization.
Data Protection Officer Please refer to your Home organization.

Jurisdiction and Control Authority

The service falls under Italian jurisdiction.
Data Protection Authority.
How to submit a complaint to the Data Protection Authority:
https://www.garanteprivacy.it/home/diritti/come-agire-per-tutelare-i-tuoi-dati-personali

Personal data processed and legal basis for processing
  1. Personal data processed by the service:
    1. First and last name;
    2. E-mail address;
    3. Tax Identification Number;
    4. Student number;
    5. Name of the organisation to which you are affiliated;
    6. Preferences regarding consent to the use of online resources;
    7. Browser related data (e.g. type of browser used to access the service);
    8. Log records: user ID, date and time of use, service requested, attributes transmitted to the service;
  2. The personal data indicated on this page are processed by the affiliated institution in the performance of its tasks in the public interest, ' including the promotion of student mobility and study opportunities abroad offered by the Erasmus+ programme, as well as access to educational resources published by the Digital Education Hubs. For more information on the legal basis for processing, please contact your affiliated institution.

Personal data processing purpose

Provide Identity Management and Identity Provider services in order to authenticate the subject for accessing requested Erasmus+ and Digital Education Hub services.

Personal data are transmitted to Erasmus+ and Digital Education Hub services on users’ requests in order to provide access to the service.

Log records containing personal data of the subject are kept in order to ensure that the service functions correctly, to maintain its security and to prevent abuses.

Third parties to which personal data are transmitted

On user request personal data are transmitted to external services in order to access their resources. Such resources are represented by the digital services published by the Erasmus+ program and the Italian Digital Education Hubs.

How to access, rectify, delete personal data or oppose to their processing

Please contact your Home Organisation that acts as Data Controller.

Data portability

The Policyholder may request the portability of data relating to digital identities, including credentials and information relating to consent, which will be provided in an open format and pursuant to Art. 20 of the GDPR. The porting service is free of charge when the service ends.

Duration of the processing

The personal data of the data subject is stored for as long as it is necessary to provide the service. If it is no longer necessary to provide the service, the Data Controller may deactivate a user. The data subject may also request deactivation of the service. In the event of deactivation, the data is stored for a further 18 months in order to assess whether the user should be reactivated. After 18 months from deactivation, if no reactivation has been requested, all data relating to the data subject is deleted. Log data is stored for 6 months from collection, after which it is removed.