Definitions and terminology The key words “MUST”, “MUST NOT”, “REQUIRED”, “SHALL”, “SHALL NOT”, “SHOULD”, “SHOULD NOT”, “RECOMMENDED”, “MAY”, and “OPTIONAL” in this document are to be interpreted as described in RFC 2119 [RFC2119]. Federation, Identity Federation: An association of organisations that come together to securely exchange information as appropriate about their users and resources to enable collaborations and transactions. Federation Operator: Organisation providing the infrastructure for Authentication and Authorisation to Federation Participants.…

This version of the Privacy Statement reached rough consensus on 28 October 2016. Introduction This document explains what personal information is collected by the South African Identity Federation (SAFIRE) and how it is used. This document SHALL1 be published on the Federation website at https://safire.ac.za/safire/policy/privacy/. Types of data collected or processed Metadata The Federation collects metadata from various entities to facilitate the operation of the federation. Such metadata typically contains the canonical legal name of the organisation operating the entity, the contact details of various responsible parties, as well as technical information pertaining to its operation.…