GRNET's Zeus Voting Service records all information entered into the election process, including ballots, dates, voter names and contact details (e-mail, or mobile phone number, if provided), and names and contact details for election trustees.
It also records encrypted votes, final unencrypted ballots, and other cryptographic information provided by the computers of voter and trustee according as part of the application protocol.
All this information is necessary for the execution of the election and it is never used for other purposes unless requested by the election authorities.
Most of this information appears in cryptographic proofs and thus is, by default, retained indefinitely as an audit trail that can be mathematically verified for correctness at any time in the future.
Election authorities may request to retrieve their recorded election data at any time, as well ask for their destruction.
|Name of the service||Zeus|
|Description of the service||GRNET's Zeus is an electronic voting service. Zeus users can hold verifiable elections with one or more polls. Several different ballot types and election systems are supported, such as simple questions with predefined answers, party lists, score voting, or single transferable vote (STV)|
|Data controller and a contact person||GRNET, Panos Louridas, email@example.com|
|Jurisdiction||GR-A Greece Attica|
|Personal data processed||A. The following data is retrieved from your Home Organisation: - a unique user identifier (SAML persistent identifier) - user email address (friendlyName="mail")|
|Purpose of the processing of personal data||User unique identifier and email are used by the system to match logged in user to a Zeus voter entry.|
|Third parties to whom personal data is disclosed||The collected data may occasionally be shared with the corresponding election authorities.|
|How to access, rectify and delete the personal data||Contact the service helpdesk at `firstname.lastname@example.org`|
|Data retention||Zeus service do not persist any of the data collected from the IdP.|
|Data Protection Code of Conduct||Your personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect your privacy.|