Privacy Policy for the service SVMON

SVMON is a service that collects information on software version, stores and displays collections in a compact view. SVMON also uniquely provides information of service attributes.

1. Personal Data

If you use the service SVMON, we will process your personal data. According to Art. 4 No. 1 of the EU General Data Protection Regulation (GDPR), personal data are all data relating to an identified or identifiable natural person.

2. Controller

Controller of the data processing on this website according to Art. 4, par. 7 GDPR as well as other data protection regulations:

• Karlsruhe Institute of Technology (KIT)
• Kaiserstraße 12
• 76131 Karlsruhe
• Germany
• Phone: +49 721 608-0
• Fax: +49 721 608-44290
• E-mail: info@kit.edu

The Karlsruhe Institute of Technology is a corporation governed by public law, represented by its acting president Prof. Dr Oliver Kraft. Our Data Protection Officer can be contacted at datenschutzbeauftragter@kit.edu or by ordinary mail with “Die Datenschutzbeauftragte” (the data protection officer) being indicated on the envelope.

3. Data Processing

When you login to the service, we collect the following personal data from your remote identity provider (EUDAT B2ACCESS):

• email address
• name

In addition we collect the following personal data from your operating system:

• Browser agent (Browsername, Version and Operating System) / Client agent

The personal data retrieved from external identity provider is necessary to map you to the SVMON account, contact you and provide a comfortable interface. Only the administrator of the service has access to your personal data. When you log in to the service we store a cookie on your device. Cookies are small text files stored in your computer system by the browser used by you, through which we (the server of our website) obtain certain information. Cookies cannot execute any programs or transmit viruses to your computer. They serve to make internet offers more user-friendly, more effective, and quicker. It is distinguished between session cookies (transient cookies) and permanent (persistent) cookies. Transient cookies are deleted automatically when you close the browser. They include in particular the session cookies. These store a so-called session ID, through which queries of your browser can be allocated to the joint session. They allow us to identify your computer when you return to our website. Session cookies are deleted when you log out or close the browser. We use session cookies exclusively. We do not use any persistent cookies or flash cookies. You can set your browser such that you will be informed about the setting of cookies and you can permit cookies in individual cases only, exclude the acceptance of cookies in certain cases or in general, and activate automatic deletion of cookies when closing your browser. When deactivating cookies, functionality of this website may be limited.

4. Legal Basis

The legal basis for the processing is Art. 6, par. 1, clause 1, (b), clause 3, (b) GDPR in conjunction with Section 4 Landesdatenschutzgesetz Baden-Württemberg (State data protection act of the state of Baden-Württemberg).

5. Data Storage

Your data will be stored for as long as necessary to provide the service and there are statutory storage requirements. After expiry of the statutory retention periods your data will be deleted unless you have expressly consented to any furthe r use of the data. In general, the data is deleted after one month.

6. Your Rights

Personal data can be accessed and reviewed via SVMON APIs. To rectify the data released by EUDAT B2ACCESS, please update them at EUDAT B2ACCESS. To request an account deletion, please contact the KIT Team under eu-service-support@lists.kit.edu and provide your email address and your full name. As far as your personal data stored by us are concerned, you have the following rights:

• Right of access (Article 15 GDPR)
• Right to rectification (Article 16 GDPR)
• Right to erasure (Article 17 GDPR)
• Right to restriction of processing (Article 18 GDPR)
• Right to object to data processing (Article 21 GDPR)

In addition, you have the right to complain about the processing of your personal data by us with a supervisory authority (Art. 77 GDPR). In the case of manifestly unfounded or excessive requests, we can charge a reasonable fee. Otherwise, information will be provided free of charge (Art. 12, par. 5 GDPR). In the case of reasonable doubts concerning the identity of the natural person asserting the above rights, we may request the provision of additional information necessary to confirm the identity of the data subject (Art. 12, par. 6 GDPR).