This privacy statement explains which personal data the library processes, how we use these, why we do this and how you can make your own choices regarding the use of your personal data. At the Library we value free access to information. Free also means that you can do this without your reading and searching behavior possibly having unforeseen consequences.
Personal data we process
Every member of the Erasmus academic community, student or employee, has access to the digital library. You have a university account, including ERNA-ID and mail address. We use these data to provide access to the digital library (via SURFConext) and we store these data in our library application. Furthermore, we use IP-addresses to authenticate when you try to access the digital library, for instance when you start a session at a computer within the university network.
Students can use their student card to loan printed books and journals. For employees, we provide a library card based on data from the HR-SAP system. We register which document has been borrowed by which patron and these data are stored in our library system.
Visitors from outside the university, not having any affiliation to another Dutch university, can get a service card, which is valid for one day. We ask for proof of your identity and home address before we issue the service pas. These data are stored up until 30 days after you return the service card at the library desk. Check our services for visitors.
Why we process personal data
Processing personal data is necessary to provide library services. We need data to know who is entitled to access our databases. We want to be able to appeal to someone in case of possible abuse. When we lend books, we must know which patron has borrowed these, when these are to be returned and how we can reach you to send a reminder if necessary.
Furthermore, we use data to improve our services. We use IP-addresses to gain insight in the usage of our digial library. This is input for decisions about continuation or cancellation of subscriptions.
We do not build personal profiles, based on personal data and reading history.
Sharing personal data
We only share personal data with third parties when necessary to provide our services. The content of our e-journals and databases are hosted by publishers and our licenses guarantee our access rights. Authentication is mostly based on IP-addresses, but sometimes based on other (personal) data. This can be an identifier, but in some cases it can also be a mail address.
We have a minimal disclosure policy: we only share data necessary to authenticate and we share it only for this purpose.
Exercise your privacy rights
You have the right to get insight in your personal data we process. In addition, you have the right to make corrections or to have them removed. Keep in mind that when we delete data, we can no longer supply the related services such as borrowing or giving access to the digital library.
If you have any questions or if you want to exercise your rights, please contact us at firstname.lastname@example.org
Privacy statement EUR