Data Controller details:

National Technical University of Athens (www.ntua.gr)

Data Controller Contact details:

dslab@mail.ntua.gr

Scope of this Privacy Statement:

The National Technical University of Athens (NTUA) is bound by the European Regulation 2016/679 of the European Parliament and the European Council on the protection of natural persons with regard to the processing of personal data and the free movement of such data (General Regulation on Data Protection – GDPR), as well as by any legislation and/or regulation implementing or created pursuant to the GDPR and the e-Privacy legislation, or which amends, replaces, re-enacts or consolidates any of them, and all other national applicable laws relating to the processing of personal data and privacy that may exist under applicable law. The criteria as well as the terms and conditions under which NDC collects, processes, uses, stores and transmits the personal data of the applicants regarding cloud service Access are laid down in the present Privacy Statement. For this statement, «personal data», «data controller», «data processor», «third party», «supervisory authority», «processing», and «data subject», shall have the meanings set out in the applicable Data Protection Legislation.

Purpose(s) of the processing operation:

The purpose(s) of processing the personal data is to: Provide cloud services, for evaluation purposes, collect service statistics/quality of service, report/log and for audit reasons.

Categories of data processed:

NTUA holds and processes the following personal data of the Students, Professors, and Researchers.

Access to the collected data:

System Administrators

Recipients of the collected data:

The personal data collected during this processing operation is likely to be communicated with external reviewers for evaluation purposes and for fulfilling our commitments and obligations contained in contracts or other agreements.
Your personal data may also be shared with government authorities and/or law enforcement officials if required for the purposes above, if mandated by law or if required for the legal protection of the data controller(s) legitimate interests in compliance with applicable laws. We do not transfer personal data outside of the EU/EEA.

Data Ownership and Privacy

The National Technical University of Athens will be responsible for securely storing all data that is uploaded, created, or processed within the infrastructure. We will ensure that all data is treated with the utmost care and that privacy policies and regulations are strictly adhered to. Users will have access to their own data and will be responsible for managing and maintaining its accuracy and integrity.

Data Security

The National Technical University of Athens will employ industry-standard security measures to protect all data within the infrastructure as a service cloud site. These measures will include access controls, encryption, monitoring, and auditing. Users will also be responsible for ensuring the security of their own data, including access controls and authentication.

Usage Restrictions

Leaena provided by the National Technical University of Athens is intended for legitimate research and educational purposes only. Any usage of the service that violates applicable laws, regulations, or ethical standards will be prohibited. Users will also be prohibited from engaging in any activity that may cause harm to the infrastructure or other users.

User Responsibilities

Users of the Leaena cloud services will be responsible for complying with all policies and regulations related to the use of the service. This includes but is not limited to data security, usage restrictions, and privacy policies. Users will also be responsible for maintaining the integrity and accuracy of their own data.

Data Retention

The National Technical University of Athens will retain data within the infrastructure as a service cloud platform only for as long as necessary to fulfil users’ purposes. Users will be responsible for managing the retention of their own data.

Data Disposal

The National Technical University of Athens will employ industry-standard methods to dispose of data that is no longer needed. Users will be responsible for disposing of their own data in accordance with applicable policies and regulations.

Data Access

The National Technical University of Athens may provide access to data within the Leaena platform to authorized personnel for research and analysis purposes. Any such access will be strictly controlled and monitored to ensure compliance with applicable policies and regulations.

Compliance

The National Technical University of Athens will comply with all applicable laws and regulations related to the collection, storage, and use of data within the Leaena Platform. Users will also be required to comply with applicable laws and regulations related to their own data.

Updates to Policy

The National Technical University of Athens reserves the right to update this policy at any time to reflect changes in technology, regulations, or best practices. Users will be notified of any changes and will be required to comply with the updated policy.