Connecting a Shibboleth Service Provider
As the operator of a data-receiving system, you are obliged by the GDPR to create a register of processing activities. Based on this document, an attribute release is created for your service provider.
List of processing activities
A template and documentation can be found on the intranet:
Create a first draft and open a ticket at the ServiceDesk and attach your document.
Enter the attributes you consider necessary with the corresponding designations and also the data you have collected in your service in the "Description of the categories of personal data" field in the document. Please use the attribute description from the "Technical description" column in our documentation "Explanation of attributes".
Example for the documentation of requested Shibboleth attributes:
Selection of possible processing activities:
Read more: