| Name of the service |
Interfederation Attribute Test |
| Description of the service |
Allows to check if an organisation/Identity Provider releases the attributes recommended to be support in eduGAIN. |
| Data controller and a contact person |
SWITCH, the Swiss education & research network.
|
| Jurisdiction |
CH Switzerland Zurich. |
| Personal data processed |
1. For all users
- IP address
- Referrer address (the web page a user is coming from)
2. Only for authenticated users
The following attributes are only processed/displayed if they are released by the organisation of the user that is accessing the Interfederation Attribute Test
- E-mail
- Home organization
- Home organization type
- Affiliation
- Targeted ID/Persistent ID
- Principal name
- Scoped affiliation
- Display Name
- Common Name
- SCHAC Home Organisation
- SCHAC Home Organisation Type
All of the above attributes are declared as required to check if they really are released by an organisations.
|
| Purpose of the processing of personal data |
The IP and referrer addresses of all web page visitors are stored in the web server log file for debugging purposes.
For authenticated users, the Interfederation Service may receive all personal data mentioned-above. This personal data is only used to check if a Home Organisation is able to release all the attributes that the eduGAIN attribute profilerecommends to support. |
| Third parties to whom personal data is disclosed |
No data will be released to third parties. Personal data is only shown to the user himself. Data might also be used by SWITCH staff members for debugging purposes. |
| How to access, rectify and delete the personal data |
Contact via aai@switch.ch.
To rectify the data released by an organisation about you, contact that Home Organisation's IT helpdesk. |
| Data retention |
Personal data, IP address and referrer are only stored in log files created by the web server and the SAML software. Log files are kept only for 30 days and are deleted automatically after this time. |
| Data Protection Code of Conduct |
Personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect the user's privacy. |