The Computing Center of IN2P3 (CNRS) informs you that the data collected directly and indirectly through the identity portal is subject to processing.
The personal data collected are technically required for managing identities and access at CC-IN2P3 and, ultimately, for the provision of services.
The identity portal implements the lifecycle of user accounts, scientific collaborations, and access permissions for various IT services.
The data is thus collected based on the legal basis of legitimate interest (cf. Article 6.1.f of the European Data Protection Regulation).
The information is also transmitted to various IT services to ensure identity consistency, particularly for enabling single sign-on.

The following personal data are collected through the data processing: last name, first name, login, nationality, email address, and the IP address of network connections.
If applicable, your research structure and user groups are also retained.
All requested information is required to obtain an account.
Session cookies are used to provide single sign-on, allowing you to log in to multiple services without having to provide your password again.
They are necessary for the operation of the application and are therefore mandatory. No other use is made of your browsing information.

The data is accessible by the CC-IN2P3 staff for user support, identity management, and operation of the provided IT services.

The requested personal data are kept 3 years after the end of your activity at CC-IN2P3.
The data is actively stored in the system 2 years and 11 months, then resides in the backup system for one month before being permanently deleted from the entire information system.
Data related to network connections are stored for one year, in accordance with CNRS trace retention policy.

In accordance with applicable legal and regulatory provisions, particularly Law No. 78-17 of January 6, amended, related to information technology, files, and freedoms, and European Regulation No. 2016/679/EU of April 27, 2016 (applicable since May 25, 2018), you have the following rights:

• Right of access, to know the personal data concerning you
• Update your data if they are inaccurate
• Deletion of your data

• While connected to the identity portal: personal information is viewable and modifiable by the user through the portal.
• By contacting IT support.
• By contacting the data processing manager.





If you believe, after contacting us, that your data protection rights are not respected, you have the option to file a complaint online or by post to CNIL (details at https://www.cnil.fr/).