/
eLTER DAR Privacy Notice

eLTER DAR Privacy Notice

Version: 1.0

Effective Date: Dec 10, 2025

This privacy notice applies to the website and service Digital Asset Registry (DAR) available at https://dar.elter-ri.eu . It provides information about how your personal data is processed in accordance with the General Data Protection Regulation (GDPR, Regulation (EU) 2016/679).

1. Contact Details of the Data Controller

Masaryk University

Žerotínovo nám. 617/9

601 77 Brno

Czech Republic

Email: info@muni.cz

Website: https://www.muni.cz

General information: https://www.muni.cz/en/about-us/official-notice-board/personal-data-protection

2. Contact Details of the Data Protection Officer

Data Protection Officer, Masaryk University

Email: dpo@muni.cz

3. Description and Purpose of the Service

The eLTER Digital Asset Registry is a metadata catalogue designed to describe, publish, and share information about digital assets produced within the eLTER RI. The DAR allows registered contributors to manage their assets and enables public users to search and access metadata records.

For proper operation and security of the DAR, certain personal data may be collected and processed, such as for account management, analytics, or technical logging.

4. Categories of Personal Data Processed

Depending on the way you use the DAR website, we may process the following categories of personal data:

  • Name and email address (for registered contributors)

  • Login information (if authentication is used)

  • IP address and browser information (via log files and cookies)

  • Language preferences and session cookies

5. Legal Basis for Processing

We process your personal data in accordance with the following legal bases:

  • Article 6(1)(a) GDPR – based on your consent (e.g. analytics cookies)

  • Article 6(1)(b) GDPR – for the performance of a contract (e.g. contributor accounts)

  • Article 6(1)(c) GDPR – to comply with a legal obligation

  • Article 6(1)(f) GDPR – our legitimate interest in ensuring the functionality, security, and improvement of the website

6. Recipients of Personal Data

We do not share your personal data with third parties, except as required to provide the service or by law. In some cases, data may be shared with authorised service providers responsible for hosting or maintaining the platform.

Data is not transferred outside the EU/EEA unless explicitly stated and based on your consent or appropriate safeguards.

Liability disclaimer

This website contains links to external websites which have been provided by third parties. We are not responsible for the content of these external websites and therefore do not accept any liability for the content of these websites. Responsibility for the linked pages lies with the providers or operators of the external websites. While we make all reasonable efforts to ensure that the information provided on the linked sites is accurate, we cannot always guarantee the accuracy of information provided on the sites unless there is concrete evidence of an infringement. If we become aware of any such infringement, we will immediately remove such links. 

User authentication and authorization services 

eLTER DAR uses the Authentication and Authorization Infrastructure service (eLTER LOGIN), in order to enable users to login with their existing credentials, if they so choose, without necessarily needing separate user IDs and passwords for the eLTER DAR. Personal data are exchanged between eLTER DAR and eLTER LOGIN during the authentication and authorization process. eLTER LOGIN adheres to the General Data Protection Regulation of the European Union. Currently, eLTER LOGIN is provided by the same data controller as eLTER DAR service by Masaryk University.

Link to eLTER LOGIN policies

7. Cookies and Web Analytics

We use the following tools and technologies:

Technically Necessary Cookies: Used for basic website functionality such as language settings or login sessions. These are stored temporarily and deleted when the session ends.

8. Server Logs and Technical Logging

When accessing the DAR website or uploading data to repository, the following information is logged for security reasons:

  • IP address

  • Country of IP address

  • Time and date of access

  • Accessed page or resource

  • Browser and operating system

  • Operating system

  • Referring URL

9. Data Retention

Personal data is only retained for as long as necessary to fulfil the purpose of processing. For example:

  • Log files: logs are retained for a minimum of 1 month and used solely for security and operational diagnostics.

  • Contributor account data: refer to eLTER LOGIN policies

You may request deletion earlier under your data subject rights.

10. Your Rights under the GDPR

You have the following rights:

  1. Right of access (Art. 15 GDPR)

  2. Right to rectification (Art. 16 GDPR)

  3. Right to erasure (Art. 17 GDPR)

  4. Right to restriction of processing (Art. 18 GDPR)

  5. Right to data portability (Art. 20 GDPR)

  6. Right to object (Art. 21 GDPR)

  7. Right to withdraw consent (Art. 7(3) GDPR)

  8. Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

11. How to Exercise Your Rights

To access, correct, delete or object to the processing of your personal data, please contact: Data Protection Officer, Masaryk University dpo@muni.cz or Support: elter@ics.muni.cz.

If your request concerns login or identity data provided by your home organisation, please contact their IT support.

12. Supervisory Authority

Without prejudice to any other administrative or judicial remedy, the data subjects have the right to lodge a complaint with a supervisory authority if they consider that the processing of personal data relating to them infringes the GDPR. The supervisory authority responsible for the Masaryk university is: 

The Office for Personal Data Protection

Pplk. Sochora 27, 170 00 Praha 7, Czech Republic

Website: https://www.uoou.cz/en/