Preamble
Protecting your personal data is a core concern forUniversité Grenoble Alpes Alpes, which is committed to constantly improving its compliance with Regulation (EU) No. 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data, the General Data Protection Regulation or "GDPR" and Law No. 78-18 of January 6, 1978 relating to information technology, files and freedoms in its consolidated version (hereinafter, the "Data Protection Law").
Consult our cookies policy
The purpose of this personal data protection policy is to inform people whose data is processed byUniversité Grenoble Alpes Alpes in a concise, transparent, comprehensible and easily accessible manner about the nature of the processing and their rights concerning their data.
Processors
Université Grenoble Alpes Alpes, represented by its President as data controller, determines the purposes and means of the personal data processing carried out within its organization.
Address: Université Grenoble Alpes - 621 avenue centrale 38400 Saint-Martin-d'Hères
What data do we process and why?
Université Grenoble Alpes Alpes processes your personal data as part of its administrative and educational management of students and applicants.
This processing is compulsory, and is carried out in the public interest of higher education and research, in compliance with legal obligations or with the consent of individuals.
The university also carries out optional processing (such as surveys), as well as processing for statistical and management purposes.
Who processes your data? Who has access to your data?
Depending on the purpose, the following are authorized to process your personal data: (
for example HR Department staff, local HR managers (in components, laboratories, central services, etc.); staff managers and line managers; staff representative bodies; other departments with functional or operational authorization.
Université Grenoble Alpes Alpes may transfer data concerning you to third parties, in particular to its institutional partners such as the Centre régional des œuvres universitaires (CROUS), the relevant ministries, the DGFIP, the rectorat and other contractual partners or subcontractors.
How long is your data stored?
Personal data is kept only for as long as is necessary to achieve the purposes for which it was collected and/or for as long as required by law or regulation.
In this respect, the university complies with the provisions of instruction "DAF DPACI/RES/2005/003 of February 22, 2005 on the sorting and conservation of archives received and produced by services and establishments contributing to national education".
How secure is your data?
The university has defined technical, legal and organizational measures to protect your data appropriately according to its nature and the extent of the processing.
These measures comply with theUniversité Grenoble Alpes Alpes Information System Security Policy (PSSI), which is in line with that of the French government.
Transfers of your personal data outside the European Union
In the context of student mobility, your personal data may be transferred outside the European Union. In such cases, the university ensures that the data is processed in compliance with applicable data protection laws, in particular by signing standard contractual clauses and taking additional measures. If these conditions are not met, your consent will be requested.
What are your rights and how can you exercise them?
The university processes your personal data as part of their missions and, in accordance with the RGPD, you have the following rights:
- right to be informed,
- right of access,
- right of rectification.
And, depending on the type of processing and its legal basis :
- right to restrict processing,
- right to data portability,
- right of objection or deletion if your data is used for other purposes not covered by a legal obligation, or if it is not subject to a legal retention period,
- right to withdraw your consent,
- and you can define post-mortem directives for your data.
You can exercise your rights by contacting the shared Data Protection Officer :
Email address :
dpo@grenet.fr
Postal address: Protection des données - DPO - Direction des Systèmes d'information mutualisés, Domaine universitaire, 31, rue des mathématiques 38400 Saint-Martin-d'Hères.
You also have the right to lodge a complaint with the CNIL :
https://www.cnil.fr/fr/plaintes
Evolution of the personal data protection policy
This privacy policy is subject to change in the light of legislative and regulatory developments.
