Terms of Service

Effective as of 16 February 2021

Introduction

  1. Humanitarian ID (HID) is an authentication service which let users log into a range of humanitarian websites with their Humanitarian ID username and password.

  2. HID users should always conform to the HID Code of Conduct. Users that become aware of use that conflicts with the Code of Conduct are encouraged to contact info@humanitarian.id.

Using the HID authentication service

  1. HID will always require user authorization before enabling a third-party website to access HID and authenticate a user’s details. 

  2. When a user accesses a third-party website using the HID authentication service, HID shares the following user data:

    • Personal identification information (name and email address)
    • Date and time of usage (Profile creation and updates, password resets, trusted browsers and devices)
    • External authorized applicants (Websites that the user agreed to grant access to his/her data in Humanitarian ID)

  1. All user information is managed by HID in line with these Terms of Service, the UN GA 1990 Guidelines for the Regulation of Computerized Data Files and the UN Personal Data Protection and Privacy Principles.

Data security and privacy

  1. User authentication on HID takes place securely via OpenID Connect.

  2. User-to-service, user-to-client application, client application-to-service, and service-to-service connections are all encrypted using SSL.

  3. OCHA and the HID team will not transfer personal data of users to other organisations.

  4. HID is built using publicly audited open source tools. Security patches are regularly applied to maintain compliance with the UN Office for Information and Communications Technologies standards. Data that is uploaded to HID is stored by an OCHA-managed data centre located in the United States. HID reserves the right to change to a different hosting provider or location.

  5. Users that become aware of an infringement on data security or privacy should notify the HID team at info@humanitarian.id.

  6. In case of a data breach, the HID team will determine an appropriate course of action, including whether to notify users. 

Warranties, disclaimers, privileges and immunities

  1. HID reserves the right to modify and/or terminate its authentication service in the future. 

  2. OCHA aims to uphold a high standard for the accuracy and completeness of information shared through HID. However, OCHA cannot verify the accuracy of all information in HID. Further, OCHA makes no guarantee that information shared on HID will be secure or error-free. Sharing information through HID does not imply the transfer of any rights over this information to OCHA. OCHA disclaims all warranties, whether express or implied. Users who share information on HID are solely responsible for the information that they share. OCHA assumes no liability whatsoever for information shared on HID by users.

  3. The designations employed and the presentation of material on the HID service do not imply the expression or endorsement of any opinion on the part of the United Nations concerning the legal status of any country, territory, city or area or of its authorities, or concerning the delimitation of its frontiers or boundaries. 

  4. Nothing in these Terms of Service or on the HID website shall be deemed a waiver, express or implied, of any of the privileges and immunities of the United Nations, including its subsidiary organs. 

Applicable guidance and policy

  1. OCHA is mandated by the United Nations General Assembly Resolution 46/182 and guided by the Humanitarian Principles. OCHA is governed by the applicable guidance and policies established by the United Nations General Assembly and the Secretariat. Notably, personal data is processed according to the UN GA 1990 Guidelines for the Regulation of Computerized Data Files

  2. The Personal Data Protection and Privacy Principles were adopted by a broad group of UN agencies, funds and programmes in 2018.

Governance of these terms

  1. These Terms of Service provide guidance to users of the platform. It is the sole responsibility of users to ensure that their behavior on the platform is in compliance with these Terms of Service. If you do not agree with these terms, you should discontinue use of the HID service. If you have any questions or comments about these terms or HID, please visit our Frequently Asked Questions or send an email to info@humanitarian.id.

Definitions

Data breach

The loss, destruction, alteration, acquisition, or disclosure of information caused by accidental or intentional, unlawful or otherwise unauthorized purposes, which compromise the confidentiality, integrity and/or availability of information.

Data security

A set of physical, technological and procedural measures that safeguard the confidentiality, integrity and availability of data and prevent its accidental or intentional, unlawful or otherwise unauthorized loss, destruction, alteration, acquisition, or disclosure.

Data transfer

The act of sharing personal data or making them accessible to a third party using any means, such as in hard copy, electronic means or the internet.

Personal data

Personal data is any information relating to an individual person ("data subject") who may be identified by any means reasonably likely to be used, including by reference to a name, an identification number, location data, or one or more factors specific to his or her physical, physiological, mental, economic, cultural or social identity. To ascertain what means are reasonably likely to be used to identify the individual, account should be taken of all objective factors, such as the costs of identification and the amount of time required for it, taking into consideration both the technology available at the time of the Processing and technological developments. Therefore, Personal Data does not include anonymous information, that is, information that does not relate to an identified or identifiable natural person or to data rendered anonymous in such a way that the Data Subject is not or is no longer identifiable.