GDPR: Data Protection Policy - Log Files

The Data Controller is Homerton College, Cambridge. Questions on this Statement should be addressed to the College’s Data Protection Officer, Homerton College, Cambridge, CB2 8PH. 01223 747180 - dataprotection@homerton.ac.uk

Data Subject

The scope of this policy covers Homerton College website users

What data is processed, and why?

  • Error type
  • Date and time
  • Error message
  • User (if logged on to the site, otherwise anonymous)
  • Page location where the error appeared
  • Referrer page
  • Severity of the error
  • Hostname/IP address that the originating request came from

Data is Collected and processed to allow Homerton College to analyse errors and problems with the functionality of the website and to reduce spam by only allowing certain number of submissions within a time frame from a certain IP address/users.

Where does the data come from?

Data is collected automatically by the website when errors are produced or webform submissions made to the site.

Sharing with Third Parties

All data is processed by Homerton College and is not shared with 3rd parties.

Retention of data

Data is retained for the last 1000 errors/events

Data is stored on the CMS and is only accessible by administrators.

Rights of the Data Subject

Those whose personal data is recorded by these means – the data subjects – have the right: to ask for access to, rectification or erasure of their personal information; to restrict processing (pending correction or deletion); to object to communications; and to ask for the transfer of their personal information electronically to a third party (data portability).

Some of these rights are not automatic, and we reserve the right to discuss with the data subject why we might not comply with a request from them to exercise such rights.

If data subjects have questions or concerns about their personal information, or how it used, they are invited to speak to the Data Protection Officer.

 

April 2018