Privacy policy document for the KM3NET.ORG Identity and Access Management service
Name of the service
KM3NET Identity and Access Management Service
https://iam-km3net.cloud.cnaf.infn.it
Description of the service
KM3NeT is a research infrastructure housing the next generation neutrino telescopes. Once completed, the telescopes will have detector volumes between megaton and several cubic kilometres of clear sea water. Located in the deepest seas of the Mediterranean, KM3NeT will open a new window on our Universe, but also contribute to the research of the properties of the elusive neutrino particles. With the ARCA telescope, KM3NeT scientists will search for neutrinos from distant astrophysical sources such as supernovae, gamma ray bursters or colliding stars. The ORCA telescope is the instrument for KM3NeT scientists studying neutrino properties exploiting neutrinos generated in the Earth's atmosphere. Arrays of thousands of optical sensors will detect the faint light in the deep sea from charged particles originating from collisions of the neutrinos and the Earth. The facility will also house instrumentation for Earth and Sea sciences for long-term and on-line monitoring of the deep sea environment and the sea bottom at depth of several kilometers.
Data Controller
Istituto Nazionale di Fisica Nucleare (INFN)
Via E. Fermi n. 54, 00044 Frascati (Roma)
email: presidenza@presid.infn.it
PEC: amm.ne.centrale@pec.infn.it
Data Protection Officer
email: dpo@infn.it
Contact Person
INFN-CNAF
Viale Berti Pichat 6/2, 40127 Bologna Italy
email: ds@lists.cnaf.infn.it
Jurisdiction
IT-RM Italy Rome
Processed data
The following personal information is requested from the Identity Provider server of your home organisation every time you log in to the service:
- Name (givenName, surname)
- Email address
- Unique ID used to identify the user (eduPersonPrincipalName or SAML persistent ID/eduPersonTargetedID)
- Affiliation (eduPersonAffiliation, eduPersonScopedAffiliation)
Purpose of the processing of personal data
The KM3NET Identity and Access Management (IAM) is a central service used to manage identities and authorization policies on KM3NET computing resources. Personal data and log files are used for:
- User authentication and authorization at the service or at trusted KM3NET services
- Automated sending of email messages necessary for use of the service
- Statistics and development of the service
- Integration testing
Regular disclousure of personal data to third parties
Personal data is not regularly disclosed to third parties.
Data retention
Personal data is stored until the user asks to be removed from the service by interacting with the contact person for the service. Access logs are deleted after 12 months.
Transfer of personal data outside the EU or EEA
Personal data shall not be transferred outside the European Union or the European Economic Area.
How to access, rectify and delete the personal data
Get in contact with the contact person for the service. To rectify the data released by a Home Organisation, contact that Home Organisation's IT helpdesk.
Data protection code of conduct
Personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect the user's privacy.