Search results

Swedish Authority for Privacy Protection (IMY) supervises law enforcement authorities.

The primary purpose of the Credit Information Act is to protect data subjects' personal privacy but the law is also to contribute to efficient provision of credit information.

On this page you will find answers to the most frequently asked questions that IMY receives about payment default records.

Information security first and foremost involves preventing information from being leaked, distorted and destroyed. It also involves ensuring that information is to be available to the right people and at the right time. Information is not to be able to fall into the wrong hands and be misused. The data subjects are to know who is using their personal data and why.

Below follows a description of what you should bear in mind when you process personal data in e-mail. The description is intended only as a guide and is not exhaustive. It is every organisation's resp

Codes of conduct are meant to help ensure proper application of the General Data Protection Regulation's provisions by specifying how personal data may be processed in specific cases.

Data protection by design and data protection by default is a requirement for all data controllers, and applies to companies of all sizes. The term privacy by design and by default is also used when talking about data protection by design and by default.

Transfer of personal data to a third country occurs when personal data is sent or made available to a recipient outside the EU/EEA.

An organisation that processes personal data is in certain cases required to designate a data protection officer. The role of the data protection officer is to check that the General Data Protection Regulation is complied with within the organisation by means of, for example, conducting checks and providing information. On this page you can find out more about data protection officers.

About sensitive personal data, data relating to crimes and personal identity numbers.