We appreciate your interest in our wiki system. Protecting your personal data is important to us. Below, we inform you about the processing of personal data when using our wiki, particularly in the context of knowledge sharing between faculty members and students.
1. Responsible Authority
The responsible authority for data processing is:
Department of Remote Sensing
University of Würzburg
John-Skilton-Straße 4
97072 Würzburg
If you have any concerns regarding data protection, please
contact our Data Protection Officer:
steven.hill@uni-wuerzburg.de
2. Purpose and Legal Basis of Data Processing
The wiki serves as a platform for:
- Authentication and access control
- Knowledge sharing and collaboration
Data processing is based on:
- Article 6(1)(e) GDPR (performance of a task in the public interest, particularly in research and teaching).
- Article 6(1)(b) GDPR (performance of a contract, e.g., use of the wiki for study-related projects).
3. Data Processed
3.1 Data for Authentication and Role Assignment
- Name
- Email address
- User ID (e.g., matriculation number or employee ID)
- Assigned roles and permissions
These data are provided through the university's Shibboleth system.
3.2 Data in the Context of Knowledge Sharing
- Content created or edited by users (e.g., wiki articles, comments, attachments).
- Author and editing data (e.g., name and timestamp of content creation or modification).
4. Access Rights and Data Sharing
Access to the wiki is restricted to authorized individuals authenticated via the Shibboleth system. Data is not shared with third parties unless required for the operation or maintenance of the wiki system. In such cases, service providers are contractually obligated to comply with the GDPR.
5. Retention Periods and Deletion
- Authentication data: Deleted immediately after the user account is deactivated.
- Created content: Personal contributions remain stored until deleted by the creator or the administration.
6. User Rights
As a user of the wiki, you have the following rights under the GDPR:
- Right to access (Article 15 GDPR).
- Right to rectification (Article 16 GDPR).
- Right to erasure (Article 17 GDPR).
- Right to restrict processing (Article 18 GDPR).
- Right to object (Article 21 GDPR).
To exercise your rights, please contact the responsible authority mentioned above.
7. Data Processing Security
- Encrypted data transmission via HTTPS.
- Access controls and regular security updates.
- Encrypted Storage of User Data: Sensitive data such as passwords are stored in the database using state-of-the-art encryption methods (bcrypt hashing). This ensures that even in the event of unauthorized access to the database, passwords remain protected and cannot be directly retrieved.
8. User Responsibilities
All users are required not to upload sensitive personal data of third parties or confidential information without authorization. Violations may result in exclusion from the system.
9. Changes to this Privacy Policy
We reserve the right to amend this privacy policy to reflect changes in legal or technical conditions. The current version is always available at https:/privacy.eagle-science.org.
This privacy policy was last updated on 05.12.2024