Transfer of personal data to Development workstation at ITS, Umea University when using federated login
På svenskaDescription of Development workstation at ITS, Umea University
Development of Refeds MFA with ADFS
Processing of personal data
Transfer of personal data
When logging in, personal data from the identity issuer you have logged in with is transferred to the system
The following personal information is requested by the login service:
| Personal data | Purpose | Technical representation |
| Assurance level | To verify that the attribute is released by the identity provider and to display the value to the user performing the tests | eduPersonAssurance |
| Personal Identity Number | To verify that the attributes are released by the identity provider and to display the values to the user performing the tests | norEduPersonNIN |
| Unique identifiers | To verify that the attributes are released by the identity provider and to display the values to the user performing the test | eduPersonPrincipalName |
| Name | To verify that the attributes are released by the identity provider and to display the values to the user performing the tests | givenName |
| E-mail address | To verify that the attribute is released by the identity provider and to display the value to the user performing the tests | |
| E-mail address | To verify that the attributes are released by the identity provider and to display the values to the user performing the tests | mailLocalAddress |
| Date of birth | To verify that the attribute is released by the identity provider and to display the value to the user performing the tests | schacDateOfBirth |
| Name | To verify that the attributes are released by the identity provider and to display the values to the user performing the tests | sn |
Other processing of personal data in the service
The login service saves technical logs for troubleshooting and security-related incidents. These technical logs contain information about all logins that are made incl. transferred personal data.
Transfer of personal data to third parties
No personal data is transferred to third parties.
Lawful basis
Personal data is handled based on the legal basis of public interest. The personal data must be transferred in order to enable users to establish their account at Umea University
Right of access, right of rectification and right of erasure of personal data
For access, rectification and deletion of your personal data, contact the personal data controller at the higher education institution where the data is registered.
Correction of personal data transferred from your identity provider during login is done at your identity provider.
Personal data controller
Person data controller for the processing of personal data is Umea University, Sweden. If you have questions about how personal data is handled within the service, please contact pulo@umu.se
Contact information for Umeå University's data protection officer is available at https://www.aurora.umu.se/regler-och-riktlinjer/juridik/personuppgifter/
GÉANT Data Protection Code of Conduct
This service complies with the international framework GÉANT Data Protection Code of Conduct (http://www.geant.net/uri/dataprotection-code-of-conduct/v1) for the transfer of personal data from identity providers to the service. This framework is intended for services in Sweden, the EU and the EEA that are used in research and higher education.