GDPR

A testbed collects and processes a subset of information required to define and operate on your experiments. Some of it may be personal data (any information related to an identified or identifiable data subject — a.k.a., natural person) or potentially identifiable data.

The following (and/or this page, requiring your experimenter’s certificate) explains which data is collected, how (and what for) it is processed, whether it is shared and with whom, how it is secured and how you can exert your rights, e.g. to access, modify or delete it.

OpenFlow wired testbed

Collection and processing

Which kind of data are acquired, and why are these needed? How are these processed?

Personal data

E-mail

The PI (Principal Investigator) provides this information to the OFAM when requesting an OpenFlow slice.

  • Aim: act as metadata, to link the OpenFlow slice and its flows to a particular individual.
  • Lifetime: used during the OpenFlow slice lifetime, and therefore removed upon deletion or expiration.
User ID

The user identifier, chosen by the user itself when registering to the Fed4FIRE+ authority.

  • Aim: define a username in the VM(s) requested by the experimenter, which is similar to the user ID defined within Fed4FIRE+.
  • Lifetime: used during the VM lifetime, and therefore removed upon deletion or expiration.

Potentially identifiable data

Public SSH key

The user’s public SSH key is obtained a) from the certificate that is generated by the Fed4FIRE+ authority, upon registration; or b) directly from the experimenter, when updating the SSH keys in a VM.

  • Aim: give access to the user (defined with the user ID above) to the VM(s) requested by the experimenter.
  • Lifetime: used during the VM lifetime, and therefore removed upon deletion or expiration.

Access and sharing

With whom is the data shared with?

No data from experimenters or content from experiments is shared with a third party.
The experimenter’s data and the one used and/or generated by their experimenters is solely available to the experimenter bearing a certificate (e-mail) or to the experimenters in the same slice (user ID and public SSH key).

Protection

Which means are used to keep your data private?

The data described above is contained in specific databases, hosted within the systems managing the experiments. All databases are secured with appropriate credentials, whereas the systems are compartmentalised to separate specific functionality and to steer whitelisted network connections only where appropriate.

With respect to the access to such data, only the designated operator is granted credentials to access the systems and databases.

Exerting your rights

How to learn about your saved data, and how to operate on it?

You are entitled to exert full rights on your data; i.e., through actions like the ones below:

  • Access: knowing which data is stored, its source and usage
  • Deletion: partial or total opposition to use your data
  • Limitation: requesting usage of the data for the bare minimum (already the case)
  • Modification: updating it or changing in other way
  • Portability: being able to retrieve your data in electronic format

To do so, send an e-mail to rgpd [at] i2cat [dot] net requesting the specific action and on which data that should be applied. Please proceed with one of the following options:

  • Use the same e-mail address you used in the i2CAT OFELIA testbed (for the OpenFlow slice)
  • Provide proof that you own a specific user ID or public key in the Fed4FIRE+ authority