Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Account - the primary means of accessing to the non-public portions of Erasmus Dashboard the Online Learning Agreement platform and for using the Services. The term Account includes your the Student’s personal profile and is used to identify you them as well as to provide you them with a variety of administrative tools. Accounts created on behalf of HEIs are divided into two different subgroups: “Main Institutional Accounts” and “Staff Accounts”.

Erasmus Dashboard - an integrated software solution for Supporting HEIs in managing Erasmus+ mobilities operating in their professional activity. Erasmus Dashboard includes the Erasmus Dashboard web site at www.erasmus-dashboard.eu, as well as all web documents (including images, php- and html files), software, hardware, databases, interfaces, connected media, documentation, applications, updates, version upgrades, and other related components or materials that make up or contribute to the features and functionality of Erasmus Dashboard, including any data, documents, works and other materials added by the Provider.

...

Online Learning Agreement - an integrated software solution for supporting students to manage their Erasmus+ mobilities. Online Learning Agreement includes the Online Learning Agreement web site at www.learning-agreement.eu, as well as all web documents (including images, php- and html files), software, hardware, databases, interfaces, connected media, documentation, applications, updates, version upgrades, and other related components or materials that make up or contribute to the features and functionality of the Online Learning Agreement, including any data, documents, works and other materials added by the Provider. Also referred to as OLA. The Online Learning Agreement platform is hosted on the EUF website.

Organisation – the entity which accepts/receives a student for traineeship.

Personal Data - any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

...

Services - any services provided or made available by the Provider via the Erasmus Dashboard and the Online Learning Agreement platforms as well as relevant interconnected tools or relating thereto.

Staff Accounts - all the Accounts affiliated to an HEI different from the relevant Main Institutional Account, but under such Account’s responsibility.

Student - a natural person applying to study at an HEI, Student - a natural person applying to study at an HEI, using the OLA system, namely via the Online Learning Agreement platform or any Services.

User- Student, HEI or an Organisation.

Privacy Policy

Dear Data Subject, We wish to inform you that the GDPR provides for the protection of individuals with regard to the processing of Personal Data as a fundamental right, and we take user privacy very seriously.

Pursuant to Article 13 of the GDPR, therefore, EUF will process your Personal Data according to the present Privacy Policy, which describes how such data is collected, stored, used, communicated and managed in connection with the Erasmus Dashboard Online Learning Agreement platform and the related Services.

Please notify us at the address dashboard@uni-foundation support@erasmusapp.eu without delay should you notice any instances in which any violation of the present Privacy Policy occurs.Last updated: 27 April 2021 , or if you have questions or concerns about our Privacy Policy or practices.

Please note that the scope of this Policy is limited to information collected or received by EUF through use of the Services.

Last updated: 24 June 2021

Type of data Processed

Automatically collected data. The computer systems and applications dedicated to the functioning of the Dashboard Online Learning Agreement platform detect, during their normal operation, some data (whose transmission is implicit in the use of Internet communication protocols) potentially associated with identifiable users. Among the data collected are IP addresses and domain names of computers used by users who connect to the site, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the operating system, browser and computer environment used by the user. These data are processed, for the time strictly necessary, for the sole purpose of obtaining statistical information on the use of the site and to check its regular operation. The provision of such data is compulsory as it is directly related to the web browsing experience.

Data provided voluntarily by the user. The voluntary and explicit communication of Personal Data to the EUF through the Dashboard Online Learning Agreement platform implies the knowledge of this Privacy Policy, with the relevant request for consent and the eventual compilation of forms specifically prepared for this purpose.

If the Personal Data communicated to us does not belong to the same natural person who communicates it, the latter will be required to explicitly confirm that they have obtained the relevant consent from the Data Subject. In such cases, with the vision of this Privacy Policy and with the above-mentioned confirmation, the subject who communicates the Personal Data also undertakes to hold EUF harmless in case of false or reticent statements, in particular in case they have not actually obtained the consent to the processing from the relevant Data Subjects.

The voluntary sending , on your part, of e-mails to our e-mail addresses does not require further information or requests for consent.

On the contrary, specific summary information will be reported or displayed if needed in the pages of the site prepared for particular services on request (form). The user must therefore explicitly consent to the use of the data reported in these forms in order to send any request.

Cookies. The Dashboard site Online Learning Agreement platform site uses cookies. The data collected through cookies can be used to access parts of the site or for statistical purposes or to make the browsing experience more pleasant and efficient in the future, trying to assess user behaviour and modify the proposed offer of content according to their behaviour. A specific cookie policy is available for further information. 

Origin of Processed Personal Data

The Personal Data that EUF holds in connection with the Dashboard Online Learning Agreement platform and related Services is collected directly from the Data Subject when they register in the platform as Student users or uploaded by the relevant HEI or Organisation.

Data Controller

The Data Controller is European University Foundation - Campus Europae, 16C rue de Canach 5353 Oetrange, Luxembourg

Phone: +352 26 15 10

Email: dashboard@uni-foundation support@erasmusapp.eu

Purpose of data Processing and legal basis

The processing of users’ Personal Data has its legal basis in their consent and is carried out for the following purposes:

  1. to create the relevant Main Institutional and Staff Accounts;
  2. to provide the Dashboard related ServicesOnline Learning Agreement platform related Services, including to enable the preparation, negotiation, approval and management of the learning agreements;
  3. to improve the web browsing experience;
  4. to use the data contained in the contact e-mails received and in the forms, to be able to send answers to specific requests, including users support;
  5. to evaluate the behaviour of users in order to conduct research, to create internal reports, and for possible educational purposes; and
  6. to modify the offer of content according to the users’ behaviour;
  7. to communicate our news;
  8. to send service - related notifications that may be of importance to continue using the Services, and safety/security notifications related to the participation in programmes featured in our Service.

...

EUF may also process the users’ data in order to pro-actively analyse the system architecture, data models and infrastructure resources in order to offer the Service in the best possible way. This includes, for example, analysis of slow-running database queries, predicting the growth rate of data (in order to allocate resources ahead of time), and analysis of the data contents and format in order to choose the most performant and fitting data models. It is unavoidable that in order to be able to provide the best possible service, the Provider EUF must be able to understand the data, as well as emergent trends in the data. Such analysis is done, whenever practical, in an anonymized manner and with only the above, purely technical or service-oriented purposes in mind.

...

The user’s consent is compulsory while using the DashboardOnline Learning Agreement platform, and in particular to be able to have Main Institutional and/or Staff accountsown an account and correctly execute and manage Learning Agreements, for what concerns the purposes under points 1, 2, and 4 above. For the purposes under points 3 and 8 above, the consent is optional, but the lack thereof may worsen the provision of the Services. For the purposes under points 5, 6, and 7 the consent is optional and will not compromise in any way the provision of the ServiceServices, should you desire not to provide your consent for one or more specific purposes, please inform us at the time your Personal Data is communicated to us, or at any time thereafter, by contacting us at the e-mail address dashboard@uni-foundation support@erasmusapp.eu.

Data recipients

In general

Within the limits pertinent to the Processing purposes indicated, users’ Users’ data may be communicated to partners, consulting companies, private companies, appointed by the Data Controller as Data Processors or for legal obligations or to fulfil some users’ specific requests. In such cases we take all the necessary technical and organisational measures to protect the confidentiality and security of your Personal Data from unauthorised access or against loss, misuse or alteration by third parties.

Although not directly communicated to any specific recipient, account contact information will also be available as contact information for other users who wish to contact you.

Should an HEI through one of the accounts referable to it and enabled for that purpose fill out an OLA for one of its Students, it will be made available to the referring student once that student logs into their account on the OLA side. This pre-filled document and the Personal Data contained therein, in relation to which, however, the compiling party assumes the responsibilities set forth in this Privacy Policy in relation to Personal Data referable to a person other than the one who communicates them, will not be communicated to other HEIs without the consent of the Student concerned.

Likewise, should an HEI through one of the accounts referable to it and enabled for that purpose fill out an Inter-Institutional Agreement, it will be made available to the concerned parties in the Inter-Institutional Agreement Manager alongside with the Personal Data contained therein, in relation to which, again, the compiling party assumes the responsibilities set forth in this Privacy Policy in relation to Personal Data referable to a person other than the one who communicates them.

Our Services may also depend on third-party tracking tools from our service providers, examples of which include email service provider as well as push-notification service provider. Such third parties may use cookies, APIs, and SDKs in our services to enable them to collect and analyse user information on our behalf. In this context, third parties may have access to information such as your device identifier, MAC address, IMEI, locale (specific location where a given language is spoken), geo-location information, and IP address for the purpose of providing their services under their respective privacy policies.

The possible Data Processors and persons in charge of the Processing will in such cases be punctually identified and at the users’ request be communicated in detail. For any question in this regard, please contact us at the address dashboard@uni-foundation.eu.

Please note that in such cases users will be also subject to the relevant third-party privacy policies. For any processing carried out by third parties as Data Processors in relation to the Dashboard and related services, users may contact EUF at the address dashboard@uni-foundation.eu or directly such third parties.

For all other cases of processing by third parties, please contact them directly in the manner indicated in their privacy policies.

Lastly, EUF may share your information in connection with potential merger, de-merger, acquisition, change of ownership, change of control, or in general extraordinary transaction. In such cases, the users will be notified via email and/or notice on our site of any change in ownership of the Personal Data.

Period and place of Data retention

The data collected will be stored for a period of time not exceeding the achievement of the purposes for which they are processed (“principle of limitation of storage”, art. 5, GDPR) or according to the deadlines provided for by law, to comply with our legal obligations, to resolve disputes, and enforce our agreements. The verification of the obsolescence of the data stored in relation to the purposes for which they were collected is carried out periodically.

EUF stores the Personal Data almost entirely on servers located in Ireland, Germany and Greece. EUF may nonetheless store such Data in other countries within the European Union. In such cases, this Privacy Policy will be updated accordingly.

If and when we transfer Personal Data to affiliated entities or to other third parties across borders and from your country or jurisdiction to other countries or jurisdictions around the world, we will still take all appropriate measures to ensure compliance with the GDPR.

When third parties are involved in the Processing pursuant to this Privacy Policy, Personal Data may be stored on servers outside the European Union. Please remember that in such cases any Processing is also subject to the relevant third parties’ privacy policiesOur Services may also depend on third-party tracking tools from our service providers, examples of which include email service provider as well as push-notification service provider. Such third parties may use cookies, APIs, and SDKs in our services to enable them to collect and analyse user information on our behalf. In this context, third parties may have access to information such as your device identifier, MAC address, IMEI, locale (specific location where a given language is spoken), geo-location information, and IP address for the purpose of providing their services under their respective privacy policies.

The possible Data Processors and persons in charge of the Processing will in such cases be punctually identified and at the users’ request be communicated in detail. For any question in this regard, please contact us at the address support@erasmusapp.eu.

Please note that in such cases users will be also subject to the relevant third-party privacy policies. For any processing carried out by third parties as Data Processors in relation to the Online Learning Agreement platform and related Services, users may contact EUF at the address support@erasmusapp.eu or directly such third parties.

For all other cases of processing by third parties, please contact them directly in the manner indicated in their privacy policies.

In any case, any link to websites, apps or services on the Online Learning Agreement platform referrable to any third party does not constitute or represent sponsorship of or affiliation with such parties.

EUF may be mandated to disclose Personal Data to comply with laws, regulations, legal processes, or court orders; it may need to process such Data to enforce or withstand their rights; or to protect the rights, property, or safety of its users, or other individuals. This includes exchanging information with other companies and organisations for fraud protection.

Lastly, EUF may share your information in connection with potential merger, de-merger, acquisition, change of ownership, change of control, or in general extraordinary transaction. In such cases, the users will be notified via email and/or notice on our site of any change in ownership of the Personal Data.

For students

If the Data subject is a Student, some of their Personal Data such as name and surname, e-mail address and other contact information, nationality, study field, home university, host university or receiving organisation, as well as other information concerning their curriculum can be made accessible to the concerned HEIs and Organisations for the provision of the Services, as well as to European Union agencies on the basis of obligations undertaken by EUF towards them.

Personal Data of Students will not be communicated to HEIs or Organisations without the consent of the concerned Students.

Please note that the concerned HEIs and Organisations may be located in third countries were the GDPR and the consequent safeguards do not apply. In such cases, in the absence of an adequacy decision pursuant to Article 45 GDPR, or of appropriate safeguards pursuant to Article 46 GDPR, any transfer of Personal Data will take place only on one of the following conditions: (i) the User has explicitly consented to the proposed transfer, or (ii) the transfer is necessary for the conclusion or performance of a contract concluded in the interest of the User between EUF and another natural or legal person.

For HEIs and Organisations

For HEIs or Organisations, some of the personal information of the relevant persons (contact and/or responsible person at HEI and contact person, mentor and/or supervisor at Organisation) contained in the Learning Agreements and/or relevant documentation uploaded in the platform can be made accessible, as well as to the concerned counterparties for the provision of the Services (be them Students, HEIs or Organisations), to European Union agencies on the basis of obligations undertaken by EUF towards them.

Also in this cases, the recipients may be located in third countries, and thus any transfer of Personal Data will take place only on one of the following conditions: (i) the User has explicitly consented to the proposed transfer, or (ii) the transfer is necessary for the conclusion or performance of a contract concluded in the interest of the User between EUF and another natural or legal person.

Period and place of Data retention

The data collected will be stored for a period of time not exceeding the achievement of the purposes for which they are processed (“principle of limitation of storage”, art. 5, GDPR) or according to the deadlines provided for by law, to comply with our legal obligations, to resolve disputes, and enforce our agreements. The verification of the obsolescence of the data stored in relation to the purposes for which they were collected is carried out periodically.

EUF stores the Personal Data on servers located in Ireland, Germany and Greece. EUF may nonetheless store such Data in other countries within the European Union. In such cases, this Privacy Policy will be updated accordingly.

If and when we transfer Personal Data to affiliated entities or to other third parties across borders and from your country or jurisdiction to other countries or jurisdictions around the world, we will still take all appropriate measures to ensure compliance with the GDPR.

When third parties are involved in the Processing pursuant to this Privacy Policy, Personal Data may be stored on servers outside the European Union. Please remember that in such cases any Processing is also subject to the relevant third parties’ privacy policies.

Google Login and eduGAIN

When users access the Services using their Google login or eduGAIN dataset, EUF only uses the relevant API to verify their account and ensure security of their data. EUF only fetches the authentication data and never uses any of the users’ personal information for purposes beyond the limited and express purpose of the Services experience without getting specific opt-in consent from them.

Regardless of the above, this Privacy Policy also apply to the data collected through users’ Google login.

EUF will not communicate or disseminate any information about any user related to the user's use of any Google button or eduGAIN feature. For the avoidance of doubt, this prohibition includes, but is not limited to, any use of pixels, cookies, or other methods to recognise users' clicks, including on a Google button.

Google may analyse the use of Google+ buttons on the platform, including to ensure compliance with Google policies and to facilitate Google's development of Google+ buttons. By using a Google+ button, EUF has given Google permission to utilise an automated software program, also called a "web crawler," to retrieve and analyse services associated with a Google+ button, if any.

Further information regarding Google Login is present on the T&Cs related to the Online Learning Agreement platform and on Google’s websites.

Rights of the Data Subjects

Pursuant to GDPR, users (and/or the Users individuals who communicated the relevant Data) have the right to access the Personal Data provided to us (art. 15 GDPR) and to ask to receive copy of such Data in an intelligible format in order to transmit it to another data controller (art. 20 GDPR). They have the right to obtain their update, rectification or integration (art. 16 GDPR), and to obtain their erasure (art. 17 GDPR). Users also have the right to request the restriction of the Processing of their Personal Data (art. 18 GDPR) or to object, on legitimate grounds, to such Processing (art. 21 GDPR). We inform you, however, that the exercise of such rights may be subject to limitations or exclusions pursuant to the GDPR or other relevant regulations.

...

For any request or communication concerning any of the above-mentioned rights, please send an e-mail to the following address dashboard@uni-foundation support@erasmusapp.eu. EUF will respond to any request as soon as possible and in any case within 30 days.

Users may also object to Personal Data being subject to automated decision-making, including profiling practices. EUF informs you, however, that it does not carry out any processing that may fall within the aforementioned case. Should this situation change in the future, we will promptly update this Privacy Policy.

Lastly, the Data Subjects users concerned (and/or the Users users who communicated the relevant Data) may at any time communicate their intention to withdraw their consent. In such cases, EUF may continue to Process the relevant Personal Data only in presence of an alternative legal basis for such further Processing.

...

We do not knowingly collect or solicit personal information from anyone under the age of 18 or knowingly allow such persons to use our Services. If you are under such age, please do not send any information about yourself to us, including your name, address, telephone number, or email address. In the event that we learn that we have collected Personal Data from an individual under the age of 18, we will delete such Data as quickly as possible. If you believe that we might have received any Personal Data from or about an individual under the age of 18, please contact us at the address dashboard@uni-foundationsupport@erasmusapp.eu.

Changes to the Policy

We may update this privacy policy to reflect changes to our Processing and/or Data Protection practices. If we make any material changes, we will notify the users by means of a notice on our sites prior to the change becoming effective. In any case, please visit this Privacy Policy periodically.

...