Search results

Swedish Authority for Privacy Protection has reviewed the so-called School Platform, the IT system used for, among other things, student administration of schools in the City of Stockholm. The review shows an insufficient level of security of such grave nature that the authority issues an administrative fine of four million SEK against the Board of Education in the City of Stockholm.

The Swedish Authority for Privacy Protection finds that the Swedish Police Authority has processed personal data in breach of the Swedish Criminal Data Act when using Clearview AI to identify individuals.

Umeå University has processed special categories of personal data concerning sexual life and health through, amongst other, storage in a cloud service, without sufficiently protecting the data. Swedish Authority for Privacy Protection is therefore issuing a fine of SEK 550,000 against the university.

Swedish Authority for Privacy Protection issues an administrative fine of SEK 200,000 against Gnosjö Municipality for unlawful video surveillance in an LSS housing.

Swedish Authority for Privacy Protection imposes an administrative fine of 200 000 Swedish kronor (approximately 18 700 euro) on the National Government Service Centre for failing to notify affected parties as well as the Data Protection Authority about a personal data breach in due time

Swedish Authority for Privacy Protection (DPA) has investigated a co-operative housing association’s use of video surveillance on its property. The DPA concludes that the association has gone too far when using video surveillance in the main entrance and the stairwell and when recording audio.

Swedish Authority for Privacy Protection has issued an administrative fine of SEK 300,000 against a housing company for unlawful video surveillance in an apartment building.

Swedish Authority for Privacy Protection imposes a fine of 75 million Swedish kronor (approximately 7 million euro) on Google for failure to comply with the GDPR. Google as a search engine operator has not fulfilled its obligations in respect of the right to request delisting

Swedish Authority for Privacy Protection’s investigation shows that the Healthcare Committee in Region Örebro County made a mistake when publishing on the region’s website sensitive personal data about a patient admitted to a forensic psychiatric clinic.