The Swedish Authority for Privacy Protection's (IMY) role is to uphold the protection of personal data, monitoring that they are handled correctly and do not fall into the wrong hands.
Welcome to IMY!
The Swedish Authority for Privacy Protection's (IMY) role is to uphold the protection of personal data, monitoring that they are handled correctly and do not fall into the wrong hands.
News
-
Administrative fines against two companies in the SL Group
03 July 2025
The Swedish Authority for Privacy Protection (IMY) has fined Aktiebolaget Storstockholms Lokaltrafik (SL) and Waxholms Ångfartygs AB (WÅAB) for processing personal data relating to sobriety tests conducted by employees in breach fo the GDPR. IMY issues an administrative fine of SEK 75, 000 against each companies.
-
Administrative fines against Apoteket and Apohem for transferring personal data to Meta
03 July 2025
The Swedish Authority for Privacy Protection (IMY) has decided to impose administrative fines of SEK 37 million on Apoteket AB and SEK 8 million on Apohem AB. This comes after the companies used the so-called Meta Pixel on their websites and transferred sensitive personal data to Meta.
-
The Hospital Board has failed in its security measures when handling e-mail
12 May 2025
The Swedish Data Protection Authority (IMY) criticizes the Hospital Board in Region Uppsala, for not having taken sufficient security measures in connection with the processing of personal data about, among other things, health, in e-mail.