Transfer of personal data to Seamlessaccess Demo site when using federated login

Description of Seamlessaccess Demo site

A simple site to show how to integrate Seamlessaccess.org

Processing of personal data

Transfer of personal data

Personal data might be transferred from the identity provider (your login service) during login.

When logging in to the service, no personal data is requested from the identity provider you use but might be sent anyway.

Any attribues sent is displayed on the resulting webpage but never stored or reused.

In addition to direct personal data, indirect personal data is also transferred, such as which organisation the user belongs to and which identity provider has been used when logging in. In combination with the above personal data, this can be used to uniquely identify a person.

Other processing of personal data within the service

The site stores technical logs for debugging purposes and security related incidents. These technical logs contain information regarding all authentications made to the service and the personal data transferred.

Transfer of personal data to third parties

No personal data is transferred to third parties.

GÉANT Data Protection Code of Conduct

This service complies with the international framework GÉANT Data Protection Code of Conduct (http://www.geant.net/uri/dataprotection-code-of-conduct/v1) for the transfer of personal data from identity providers to the service. This framework is intended for services in Sweden, the EU and the EEA which are used in research and higher education.