Aktiveringsguiden

Transfer of personal data to https://administrationsverktyg.umu.se when using federated login

Description of https://administrationsverktyg.umu.se

The system handles activation of user accounts at Umea University

Processing of personal data

Transfer of personal data

When logging in, personal data is transferred from the identity issuer you have logged in with to the account administration system in order to activate accounts and set the correct level of trust

The following personal information is requested by the login service:

Personal data	Purpose	Technical representation
Personal identity number	To verify the identification of you	norEduPersonNIN
Assurance level	Check level of trust from login provider	eduPersonAssurance

Other processing of personal data in the service

The login service saves technical logs for troubleshooting and security-related incidents. These technical logs contain information about all logins that are made incl. transferred personal data.

Transfer of personal data to third parties

No personal data is transferred to third parties.

Lawful basis

Personal data is handled based on the legal basis of public interest. The personal data must be transferred in order to enable users to establish their account at Umea University

Right of access, right of rectification and right of erasure of personal data

For access, rectification and deletion of your personal data, contact the personal data controller at the higher education institution where the data is registered.

Correction of personal data transferred from your identity provider during login is done at your identity provider.

Personal data controller

Person data controller for the processing of personal data is Umea University, Sweden. If you have questions about how personal data is handled within the service, please contact pulo@umu.se

Contact information for Umeå University's data protection officer is available at https://www.aurora.umu.se/regler-och-riktlinjer/juridik/personuppgifter/

GÉANT Data Protection Code of Conduct

This service complies with the international framework GÉANT Data Protection Code of Conduct (http://www.geant.net/uri/dataprotection-code-of-conduct/v1) for the transfer of personal data from identity providers to the service. This framework is intended for services in Sweden, the EU and the EEA that are used in research and higher education.