Data Protection

Personal Data

Personal data is any information that directly identifies (name, surname, email address, etc.) or indirectly (phone number, IP address, etc.) a person.

Personal Data Processing

A personal data processing is an operation (or several operations) made on personal data. This ranges from simple data collection to transformation or dissemination.

Managing tuition data, implement a survey, update a contact database, sharing personal data on a website or to a third party are examples of personal data processing, as for the law.

Data Controller

A data controller implements data processing by committing to its right compliance with the law.

Right to be Informed

Any processing of personal data must be lawful and fair. Information on the processing of these data must be easily accessible and formulated in such a way that it makes easier understanding.

Consent

When needed, the consent must be given by voluntary, clear and free act by the data subject who agrees in a specific, informed and unequivocal way to the processing of its personal data.

Exercise of Rights

Users who entrust their personal data to private or public organizations have rights to keep control. Data controllers have to precise the existence of these rights and how to exercise them concretely.

Sciences Po collects your personal data as part of its higher education and research missions. You have rights of access, rectification,erasure and opposition, a right to the portability of your personal data and the right to decide the fate of your personal data post-mortem.

Protect Your Digital Privacy

• Computers, mobile phones, tablet, etc. : same fight !
  1. Encrypt your equipment (Learn more about encryption on the CNIL website)
  2. Accept updates (antivirus, firewall, OS, applications)
  3. Do not connect suspicious removable devices to your devices
  4. Put on stand by your equipment in case of absence
  5. Always disconnect from public computers
• Set your privacy options and regularly delete your tracks (cookies and history in all your browsers, all your digital mail and all your computer equipment)
• Make sure the HTTPS (and the lock for my transactions), and avoid open WIFI
• Digital harassment and revenge porn are offenses under the Penal Code. Enter the Sciences Po monitoring unit if necessary: ecoute.cvehs@sciencespo.fr

Protect Your Digital Student Life

• Your password is in good hands: yours
  1. Separate your Sciences Po password from passwords used in your private life and choose one for each digital account
  2. Never write your password and never share it with anyone
  3. Never save your passwords in your browser
• Use your Sciences Po account firstname.lastname@sciencespo.fr to exchange with the administration
• Do not collect or disseminate the personal data of other students, teachers or staff without their consent
• Respect and obtain copyright and image rights before reuse of content found on the web
• Anonymize your surveys or comply with the GDPR obligations

Register Personal Data Processing

If you process personal data at the request of teachers or because of your student life (for example: files maintained by student associations, micro-research in the human and social sciences with surveys or interviews) and you need to comply with the law, complete the form (fr.).

Your Data Protection Officer may contact you or your teacher to accompany you.

Notify Sciences Po of a Data Breach

If you think you are a victim of hacking, renew the compromised identifiers and report the incident to the people or organizations concerned (your institution, bank, tax, Internet access provider, etc.).

In case of data breach, immediately contact dataprotection@sciencespo.fr and sos@sciencespo.fr.