Privacy policy

  1. Home
  2. Privacy policy

Name of the Service

Scipion Portal

Description of the Service

The Scipion Portal service (hereinafter referred to as: "the service" or "SP") provides a browser-based tool for interactive analysis of data using storage of Masaryk University and its compute infrastructures based on the Kubernetes technology.

This privacy notice describes how we, the Masaryk University (hereinafter referred to as "we" or "the Data Controller"), collect and process data by which you can be personally identified ("Personal Data") when you use the service.

Data controller

Masaryk University Žerotínovo nám. 617/9 601 77 Brno Czechia

Data Protection Officer

Masaryk University Žerotínovo nám. 617/9 601 77 Brno Czechia

Jurisdiction and supervisory authority

Jurisdiction: CZ, Czechia

Personal data processed

In addition to any personal data incorporated in Scipion portal, the following categories of personal data are processed by the Masaryk University as part of providing the aforementioned service:

The service may process the following personal data:

Identification data:
  • Identification number
  • E-mail address
  • Other: Affiliation, IP address
Behavioural data:
  • Usage data
  • Other: technical logs with timestamps
Data allowing conclusions on the personality:
  • Memberships
  • Other: membership information on roles, groups and communities

Purpose of the processing of personal data

The purpose of the collection, processing and use of the personal data mentioned above is:

  • To provide the service functions, i.e. users to manage their notebooks on the resources they can access and allowing administrators to manage the service and the user groups.
  • Identify the users or the administrators accessing the service and track usage of resources for accounting, security management and maintaining service stability and performance.

Legal basis

The legal basis for processing personal data is: Legitimate interests pursued by the controller or by a third party according to Art. 6 (1) (f) GDPR.

Third parties to whom personal data is disclosed

Personal data will not be used beyond the original purpose of their acquisition. If a forwarding to third parties should be necessary to answer an inquiry or to carry out a service, the consent of the data subject is considered to have been given when using the respective function or service. In particular, the data you provide to us will not be used for advertising purposes.

For the purpose given in this privacy policy, personal data may be passed to the following third parties:

Data retention and deletion

The records of your use and technical log files produced by the service components will be deleted or anonymised after, at most, 18 months.

Security

We take appropriate technical and organisational measures to ensure data security and the protection against accidental or unlawful destruction, accidental loss, alteration, unauthorised disclosure or access.

Acknowledgment

This privacy policy is based on the AARC Policy development kit (licenced under CC BY-NC-SA 4.0)