Processing of Personal Information in the NIRD Service Platform and NIRD Toolkit
Description of the Service
The NIRD Service Platform offers various cloud services to explore, process, transfer, and analyze for the users of NIRD (Norwegian e-Infrastructure for Research Data). Preinstalled scientific software is available on demand to provide data analytics through the NIRD Toolkit.
NIRD Toolkit uses the NIRD Toolkit AAI for authentication. The NIRD Toolkit AAI has pluggable authentication backends (IdPs).
What is considered personal information?
Personal data is all types of data and information that can be associated with and identify a person, such as name, social security number, phone number or pictures. Personal information is processed in connection with the use of NIRD and associated services such as NIRD Toolkit.
What personal information do we process?
Personal information processed by the NIRD Toolkit AAI, such as, but not limited to, name, e-mail, username, user-id, group memberships. We do not process special categories of personal data, as described in GDPR, Article 9.
Right to be informed
As user of Sigma2’s NIRD Service Platform and NIRD Toolkit, you are entitled to receive information about what data is stored about you and how these are processed by Sigma2. This is a result of the Act on the Processing of Personal Information, Section § 18-21.
Why Sigma2 may in some cases use personal information?
Sigma2 uses mainly personal information to ensure that:
- Possible security events are discovered, acted upon, and communicated.
- Each legitimately authenticated person receives access to the correct data and service.
- Each legitimately authenticated person can consume allocated resources in form of computational- and/or storage resources.
Data Processing Responsible entity
It is the general manager who has the overall responsibility for processing all personal data on Sigma2. This is, to ensure that all personal data processing is conducted in accordance with applicable laws and regulations and that Sigma2 does not process personal information to a larger extent than is necessary to fulfill Sigma2's purpose.