CESNET CA 4 - Code of Conduct

Name of the service: CESNET CA 4 certificates
Description of the service: Federalized login to the CESNET CA 4 certificates
Contact person: CESNET, Jan Chvojka, jan.chvojka@cesnet.cz
Jurisdiction: CZ Czech Republic

Personal data processed

The following data are retrieved from your browser:

  • IP address

The following data are retrieved from your Home Organisation:

  • First name (givenName attribute) [mandatory]
  • Surname (sn attribute) [mandatory]
  • Firstname and surname without the diacritics (commonNameASCII attribute) [mandatory]
  • E-mail address (mail attribute) [mandatory]
  • Unique user identifiaction (eduPersonUniqueId attribute) [mandatory]
  • Organization name (o attribute Unique user identification) [mandatory]

Purpose of the processing of personal data

  • IP address of the user requesting the certificate is stored on the webserver for later proof of the legitimacy of the access.
  • First name is used in the CA user profile.
  • Surname is used in the CA user profile.
  • Firstname and surname without the diacritics is used in the cn attribute of the issued certificate.
  • E-mail address is used in the e-mail attribute of the issued certificate and in the CA user profile.
  • Unique user identification is used in the CA user profile.
  • Organization name is used in the O attribute of the issued certificate and in the CA user profile.

Third parties to whom personal data is disclosed

No personal data will be released to any third party. Aggregated and anonymized data may be published.

How to access, rectify and delete the personal data

Contact the oou-zadost@cesnet.cz.

Data retention

The user's account and associated personal data are stored for the duration of the certificate validity of the issuing CA.

Data Protection Code of Conduct

Your personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect your privacy.