„Privacy Policy” változatai közötti eltérés

Innen: KIFÜ Wiki
(Új oldal, tartalma: „=== Privacy policy of HPC services === This privacy policy explains how the LEO HPC cluster operational team (hereafter referred to as "we") collects, uses and manages…”)
 
1. sor: 1. sor:
 +
[[https://wiki.niif.hu/index.php?title=Debrecen2_GPU_klaszter_en Back to the Leo Wiki page]]
 +
 
=== Privacy policy of HPC services ===
 
=== Privacy policy of HPC services ===
 
This privacy policy explains how the LEO HPC cluster operational team (hereafter referred to as "we") collects, uses and manages users' data. Before going into details, we stress that we are committed to securing and respecting your privacy, in other words, the protection and security of your data in compliance with all the relevant regulations, as well as cultural, moral, and ethical norms.
 
This privacy policy explains how the LEO HPC cluster operational team (hereafter referred to as "we") collects, uses and manages users' data. Before going into details, we stress that we are committed to securing and respecting your privacy, in other words, the protection and security of your data in compliance with all the relevant regulations, as well as cultural, moral, and ethical norms.

A lap 2022. február 22., 11:48-kori változata

[Back to the Leo Wiki page]

Privacy policy of HPC services

This privacy policy explains how the LEO HPC cluster operational team (hereafter referred to as "we") collects, uses and manages users' data. Before going into details, we stress that we are committed to securing and respecting your privacy, in other words, the protection and security of your data in compliance with all the relevant regulations, as well as cultural, moral, and ethical norms.

Official information

  • Name of the data controller: Governmental Agency for IT Development
  • Short name: KIFÜ
  • Address: Váci út 35, 1134 Budapest, Hungary
  • Tax number: 15598316-2-41
  • Registration number: 598316
  • Statistical number: 15598316 8411 312 01
  • Website: https://kifu.gov.hu
  • Representative: President Zoltán Szijártó
  • E-mail: info@kifu.gov.hu
  • Phone number: +36 1 795 2861
  • Data protection officer: Dr. Mária Kunhegyi
  • E-mail of data protection oficer: adatvedelem@kifu.gov.hu

Legal framework of Data privacy

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the GDPR
  • Act CXII of 2011 on the right to information self-determination and freedom of information law of Hungary
  • 5/20011. (II.3) Government Decree on the National Information Infrastructure Development Program
  • 268/2010. (XII.3) Government Decree on the : Governmental Agency for IT Development

The purpose of this data privacy policy is to ensure that the supercomputer capacity provided by the KIFÜ and the related services are handling the data in accordance with Article 12 (1) of the GDPR.

Legal basis for data management

For the processing of personal data provided by the user is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller as defined Article 6 1 (e) of the GDPR. KIFÜ provides the service on 5/2011. (II.3) on the National Information Infrastructure Development Program to the group of beneficiaries specified in the Government Decree.

To whom the policy applies

The LEO HPC cluster privacy policy, as appropriate and in the relevant sections, applies to all users of the LEO HPC cluster.

How, when we collect your data and what purpose

We collect the following personal data:

  1. Personal information received during federated authentication:
  • eduPersonPrincipalName: a unique identifier in the federation
  • mail: the email address used in the Service
  • sn: User's last name
  • givenName: the first name of the User

We use this data to identify you and send possible reports via e-mail.

  1. Personal data processed in connection with a project application: name; e-mail address; institution, department, telephone number. We us this data to contact project submitter after project approval
  2. Profile data provided by the user on the portal: title, name, affiliation, organization, department, address, phone number, email. We use this data to contact the user in case of problem with the project
  3. Data management related to error reporting: telephone number, e-mail We use this data to contact the user in case he or she reported a problem.
  4. Log entries: The log entries generated during the use of the Service (eg. IP addresses, web server logs) KIFÜ retains for 30 days.

Whenever you interact with the LEO HPC cluster, we also automatically receive and record information on our server log files, which may include network addresses you use to connect to the system, device identification, the type of client and/or device you're using to access our system, the time and date you accessed the cluster, and the time spent logged into the service. We may store details of any aspects of the cluster use, including, for example, the amount of processor time and storage space used by user accounts. This may include some personally identifiable data, such as the network addresses or type of device you use to connect to the system. We will use this information to help us manage and administer the cluster, to review, analyze and improve its performance, security, its patterns of use, and to plan for future upgrades.

We reserve the right to monitor the use of the cluster by your account, including anything transmitted over the Internet, and any data or software stored on our systems, in order to ensure that you and all the other users are complying with the Terms of use and Conditions of access and not breaking the law.

Where and how your data is stored

All LEO HPC cluster equipment is hosted on a single site at KIFÜ, and personal information is stored and processed only on this equipment. Also, we have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we collect and process.

We aim to protect your account's privacy and other personal information we hold in our records; however, we cannot guarantee complete security. Unauthorized entry or use, hardware or software failure, and other factors may compromise user information security at any time.

Who do we share your data with?

Collected personal information will be available to the LEO HPC operational team only. Project Resource usage and statistical information might be shared with third parties and reported in publicly available documents.

How long does the cluster keeps your data?

After the end of your use of the LEO HPC cluster, we have no need to process your personal information, and it will be deleted, or, if this is not possible (for example, because your personal information has been stored in backup archives), we will securely store your personal information and isolate it from any further processing until deletion is possible. However, data that could be used to identify you directly will not be retained for longer than five years.

Your rights

As a person whose data we hold, in general, your rights are outlined by Europe's General Data Protection Regulation (GDPR) whether you are resident of European Economic Area (EEA) or not, and in certain circumstances includes:

Right of access

You have the right to submit a request to the LEO HPC operational team to obtain information on whether we are processing your data. In the case that your data is processed, you may request at any time a copy of the personal data we hold about you.

Right to correction

All data that we process is reviewed and verified as accurate, whenever possible, and updated regularly. If you believe that the data is incorrect or has changed, you have the right to request that we correct those data.

Right to be forgotten or right to erasure

You have the right to request from the LEO HPC operational team to delete your data unless there is a legal obligation to keep that data or there is a legal basis for refusing a request for deletion of data.

Right to restriction of processing

You have the right to obtain from the controller restriction of processing where one of the GDPR Article 18 (https://gdpr-info.eu/art-18-gdpr/) conditions is met.

Right to data portability

You have the right to request the transfer of data to another operator if the processing is based on your consent or by automated means. We make sure that all personal information is readily available and is in a structured, commonly used, and machine-readable format.

Right to object

You have the right to object to the way we handle your data if the processing of the data is based on the Scientific Computing Laboratory's legitimate interest, or in carrying out a task in the public interest/for an official authority. Besides, you may object to the processing of your data for direct marketing purposes, which includes profiling to the extent that it is related to such direct marketing, as well as scientific/historical research and statistics.

Right to withdraw the consent

If the data processing is based on your consent, you may withdraw the consent at any time.

Please note that we will ask you to verify your identity through several forms before responding to such requests. Requests will be addressed as soon as possible.

Contact information

If you have any questions about this privacy policy, please contact us by e-mail: adatvedelem@kifu.gov.hu

Changes to the privacy policy We regularly revise and update personal data processing information following changes in internal operational procedures or based on obligations arising from relevant regulations. Therefore, we reserve the right to modify and update the present policy whenever deemed necessary, whereas any changes shall become effective after publication on this [Privacy Policy]