MLOps Services Privacy policy and description

 This privacy policy for the MLOps Services is valid as of 09-May-2025.

Description of the service

The MLOps Services (in the following referred to as Services) provide a set of services for Machine Learning Operations (MLOps), which includes:

• MLflow: an open source Machine Learning Lifecycle Platform to track AI/ML/DL experiments, perform model packaging, model storage, and evaluation.

The MLOps Services are provided by the Scientific Computing Center (SCC) of the Karlsruhe Institute of Technology (KIT).

User Personal Information

The Services collect personal information necessary for normal operation and security, that are:

• User email
• User Identifier (sub claim in the OIDC token)
• IP address
• Service activity (URL calls) in the form of log files

Personal information obtained during the login is processed to verify the existence of the user but it is not shared with third parties. The non-stored user details include:

• User Name
• Affiliation
• User Identifier

Log entries (i.e. IP addresses and URLs called) may be shared internally with the KIT Security Incident Response Team at SCC to investigate attacks to the service or the infrastructure provider at KIT.

Purpose for the processing of personal data

In order to provide Services for authorised users, personal data and log files are collected and used for:

• User authentication and authorization at the Services
• Automated sending of email messages necessary for the use of the Services
• Service performance monitoring, statistics, and further development
• Processing security incidents and error resolution

Data retention

We retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. Services retains User Personal Information for as long as your account is active or as needed to provide you services. The user may ask to be removed from the Services by interacting with the Contact information for the Services. Access logs are deleted after 24 months.

How to access, rectify and delete the personal data

Please, contact the Data controller at mlops-support@lists.kit.edu. To rectify the data released by a Home Organisation, contact the Home Organisation’s operators.

Data protection code of conduct

Personal data will be protected according to the Code of Conduct for Service Providers, a common standard for the research and higher education sector to protect the user’s privacy.

Jurisdiction and Supervisory Authority (DPAs):

• German DPA. Details for raising concerns for the German DPA can be found here

• Baden-Württemberg DPA. Link to file a complaint.

Contact Information

Service managers: mlops-support@lists.kit.edu
Data controller: mlops-support@lists.kit.edu

KIT/SCC
Herrmann-von-Helmholtz-Platz 1
76344 Eggenstein-Leopoldshafen