General Data Protection Regulation (GDPR)
What is GDPR?
The EU’s General Data Protection Regulation (GDPR) and the Swedish Data Protection Act have replaced Sweden’s Personal Data Act (PUL). “EU:s Dataskyddsförordning” is the Swedish translation of the EU’s General Data Protection Regulation (GDPR).
Read more about the GDPR on the Swedish Data Protection Authority’s website
What is the purpose of GDPR?
The purpose is to strengthen the right to privacy and adapt legislation to the digital society. For Lund University, this means that we are to safeguard our students, partners and colleagues, as well as the participants in our research projects.
What are the implications for the University?
Our mission means that we are permitted to process the personal data that is necessary for conducting education, research and external engagement. We are to process personal data in a secure and correct manner, which means that data is to be protected so that is not lost, corrupted or vulnerable to unauthorised access.
Online GDPR course
An online GDPR course is now available. Produced by Chalmers and KTH among others, the course is complemented with comments from Lund University’s data protection officer. It consists of short videos in which each section is a few minutes long and provides answers to questions such as: What is personal data and how may we process it? How is personal data processed within research, education and administration, and who has ultimate responsibility? The course is intended for everyone at the University. You log in using your LUCAT id here.
CONTACT
dataskyddsombud [at] lu [dot] se (dataskyddsombud[at]lu[dot]se)