Name of the service

REMS ELIXIR bona fide

Description of the service

An ELIXIR bona fide service for applying for and managing bona fide status.

Data controller and a contact person

CSC - IT Center for Science Ltd.
PL 405 ( Keilaranta 14), 02101 Espoo, Finland
Puh. +358(0)9-457 2001, Fax +358(0)9-457 2302


FI - Finland

Personal data processed

A. Following information is fetched from ELIXIR AAI every time you log in to the service:

  • Your unique identifier (ELIXIR ID attribute)
  • Your name (surname, commonName, displayName)
  • Your home organization information (schacHomeOrganization, schacHomeOrganizationType)
  • How you are affiliated to your home organisation (eduPersonAffiliation)
  • Your e-mail (mail)
  • Your bona fide status
B. Following information is gathered from yourself::

Address, email address for sending notifications to you.

If you apply for access rights, we store the information on your data access applications and their approval status.

If you have a role in approving and managing applicants' access rights, we store the related information, such as the list of datasets for which you have that role and your decisions and actions in that role.


The purpose of the processing of personal data

Personal data is used for managing access rights to datasets and for providing related reporting functionalities for applicants, application handlers, dataset owners and the data archive.

Personal data in the log files of the server is used for working out technical problems and protecting the service.


Third parties to whom personal data is disclosed

Information of the granted entitlements based on the applications are transferred to the organisation enforcing access control to the datasets.

Entitments are not transferred to parties residing outsie EU or EEA unless the country has been declared to fullfill directive 95/46/EC article 25 by Comission.

How to access, rectify and delete the personal data

Contact the data controller to use your right to access your all personal data.

Data retention

The data in the data access applications is stored as long as the datasets are deposited to the data archive.

Data Protection Code of Conduct

Your personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect your privacy.