Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
about:privacy [2026/03/20 13:19] – created adminabout:privacy [2026/03/20 13:22] (current) admin
Line 4: Line 4:
  
 **Controller Identity**   **Controller Identity**  
 +
 Full legal name of controller/organisation: Austrian Institute of Technology AIT Full legal name of controller/organisation: Austrian Institute of Technology AIT
 +
 Full address: Giefinggasse 4, 1210 Vienna, Austria Full address: Giefinggasse 4, 1210 Vienna, Austria
 +
 Contact: vitaliy.soloviy@ait.ac.at Contact: vitaliy.soloviy@ait.ac.at
 +
 Data Protection Office: dpo(at)ait.ac.at Data Protection Office: dpo(at)ait.ac.at
  
Line 14: Line 18:
  
 | Data Category | Purposes | Lawful Basis | | Data Category | Purposes | Lawful Basis |
-|---------------|----------|--------------| 
 | **Account Information** (Username, Real Name, Email Address) | Account management, edit attribution, communication | Contract (Art. 6(1)(b) GDPR); Legitimate interests (Art. 6(1)(f) GDPR: wiki transparency) | | **Account Information** (Username, Real Name, Email Address) | Account management, edit attribution, communication | Contract (Art. 6(1)(b) GDPR); Legitimate interests (Art. 6(1)(f) GDPR: wiki transparency) |
 | **Contribution History** (Edits attributed to account) | Version control, transparency, public wiki record | Legitimate interests (Art. 6(1)(f) GDPR: integrity of public knowledge base) | | **Contribution History** (Edits attributed to account) | Version control, transparency, public wiki record | Legitimate interests (Art. 6(1)(f) GDPR: integrity of public knowledge base) |
Line 25: Line 28:
  
 We share data only with:   We share data only with:  
 +
 - **Hosting Provider**: OpalStack [EU-based servers; Data Processing Agreement in place]   - **Hosting Provider**: OpalStack [EU-based servers; Data Processing Agreement in place]  
 +
 - **Analytics Provider**: GoatCounter [EU-based servers; privacy-preserving]   - **Analytics Provider**: GoatCounter [EU-based servers; privacy-preserving]  
 +
 [No other recipients unless applicable, e.g., "No transfers to third parties for marketing"]   [No other recipients unless applicable, e.g., "No transfers to third parties for marketing"]  
  
 ===== 3. International Transfers ===== ===== 3. International Transfers =====
  
-[All data stored within EU/EEA. / If transfers: "Data transferred to [country] under [Standard Contractual Clauses / Adequacy Decision / other safeguard]"]+All data stored within EU/EEA.
  
 ===== 4. Retention Periods ===== ===== 4. Retention Periods =====
  
 | Data Category | Retention Period | | Data Category | Retention Period |
-|---------------|------------------| +| Account Information | For duration of account + 90 days after deletion request, or until no longer needed |
-| Account Information | For duration of account + [X years] after deletion request, or until no longer needed |+
 | Contribution History | Indefinitely (public wiki record for integrity/transparency) | | Contribution History | Indefinitely (public wiki record for integrity/transparency) |
-| Analytics Data | GoatCounter default: [check GoatCounter docs, typically 1 year|+| Analytics Data | GoatCounter default: 1 year |
 | Server Logs | 30 days (security purposes only) | | Server Logs | 30 days (security purposes only) |
  
Line 51: Line 56:
 - Lodge a complaint with the Austrian Data Protection Authority (DSB): [dsb.gv.at]   - Lodge a complaint with the Austrian Data Protection Authority (DSB): [dsb.gv.at]  
  
-Requests: Contact [vitaliy.soloviy@ait.ac.at]. Response within 1 month.+Requests: contact vitaliy.soloviy@ait.ac.at. Response within 1 month.
  
 **Note on Contributions**: Public edit history cannot be fully erased (legitimate interest in wiki integrity), but account details can be anonymized. **Note on Contributions**: Public edit history cannot be fully erased (legitimate interest in wiki integrity), but account details can be anonymized.