University and District Library
Data Protection Declaration Dynexite
General information
The entity responsible for data processing on this website is Hochschule Bonn-Rhein-Sieg University of Applied Sciences, represented by its president Prof. Dr. Hartmut Ihne. The following contact options are available:
Hochschule Bonn-Rhein-Sieg, University of Applied Sciences
Grantham-Allee 20
53757 Sankt Augustin
Tel.: +49 2241 865 0
Fax: +49 2241 865 609
Contact information for the official data protection commissioner:
The Data Protection Commissioner of Hochschule Bonn-Rhein-Sieg, University of Applied Science
Grantham-Allee 20
53757 Sankt Augustin
Information on the rights of data subjects
According to Art. 15 of the EU General Data Protection Regulation (GDPR), data subjects are entitled to free information as to whether their personal data is being processed, and if so, which personal data is involved. In general, the data subject can request a copy of this data as long as no legal exception applies. If the data is incomplete or incorrect, the data subject is entitled to have his/her data rectified in accordance with Art. 16 GDPR.
Other rights to which data subjects are entitled include the following:
Art. 17 GDPR: Erasure of personal data if any of the grounds for erasure specified exist.
Art. 18 GDPR: Restriction on processing of personal data if any of the grounds specified exist.
Art. 20 GDPR: The data subject is entitled to transfer his/her own personal data to a controller if it is to be processed on the basis of a declaration of consent or contract.
Art. 21 GDPR: The data subject can object to the otherwise legal processing of his/her personal data on grounds relating to his/her own particular situation.
Art. 22 GDPR: Assigns special rights to data subjects in individual cases involving automated decision-making and profiling.
Right to complain
Data subjects have the right to complain to the supervisory authority responsible for Hochschule Bonn-Rhein-Sieg University of Applied Sciences.
State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
Kavalleriestr. 2-4
40213 Düsseldorf
Information on individual forms of data processing
Processing log data (access data): When using this website, information is collected about the pages accessed, whether they were accessed successfully, the time at which they were accessed, the data volume transmitted, and the IP address of the computer sending the request. The purpose of this is to identify errors. This data is only processed internally and on the basis of Art. 6 no. 1 f) GDPR, whereby the public interest is in the performance and acceptance of exams in electronic form.
Account
In order to use the exam platform (Dynexite), e.g. to access tests or exams during lectures, you must have a user account.
The data of the students and, in future, also of the employees originate from the identity management system (IDM) via the Shibboleth-SSO interface: Name, matriculation number, password. The accounts are not created automatically, but only once the students have been added via matriculation numbers.
To create separate accounts, an e-mail address is required; the name and, if applicable, an identifier (corresponds to the student's matriculation number) can be added.
It is not possible to register without an e-mail address or an existing IDM account. The data specified below is processed on the basis of Art. 6 para. 1 lit. e) EU GDPR for the purpose of restricting access to non-public, protected parts of the Hochschule Bonn-Rhein-Sieg University of Applied Sciences website to registered users. The account data will not be transmitted to third parties.
The deletion takes place after expiry of the legal retention period for exams (after 5 years).
Right to data information
You can request information about the data stored about you at any time from the e-learning team. Data that is incomplete or incorrect can be rectified by agreement.
Data collected during the use of Dynexite:
Name: Name (first name and surname)
Purpose: to identify the person
Remark: not visible to lecturers during the correction process to ensure equal opportunities
Name: e-mail address
Purpose: required to create an account and identify the person
Remark: -
Name: Identifier
Purpose: to identify the person
Remark: for students, the matriculation number; otherwise not a mandatory field; students are assigned to exams via their matriculation numbers (=identifier)
Name: Verification status
Purpose: to authenticate the person
Remark: only visible to the e-learning team*
Name: Activation status (active, inactive)
Purpose: Access authorisation
Remark: only visible for e-learning team*
Name: Sessions (Session ID, Login by, User agent, Source IP, Active, Created on, Valid until)
Purpose: for fraud and error detection as well as for identification/authentication of the person
Remark: only visible for e-learning team*
Name: Timestamp of the last login
Purpose: for error detection
Remark: only visible for e-learning team*
Name: last computer
Purpose: for error detection
Remark: only visible for e-learning team*
Name: the organisational units and modules to which a user belongs or is assigned
Purpose: affiliations and authorisations on the platform
Remark: -
Name: Activity tracking (e.g. login, logout, start attempt, entries, changes, comments ...)
Purpose: to document exam performance more accurately and detect attempts to cheat
Remark: only visible to e-learning team*; no biometric behaviour patterns are collected
Name: for participation in exercises, tests and examinations: Results, evaluations, feedback
Purpose: Measurement of learning success
Remark: -
Name: Additional data recorded during an exam: Exam progress, exam status, time remaining, uploaded assets, number of attempts, exam history
Purpose: to track the progress of the exam
Remark: -
Name: for review processes: Comments if changes need to be made
Purpose: Quality assurance of the questions
Remark: mandatory if a question is rejected so that the lecturer who created the question knows where changes need to be made
Contact Points
Team Umsetzung der DSGVO an der H-BRS