Javascript is not activated in your browser. This website needs javascript activated to work properly.
You are here

Personal data and data protection

Information and support for personal data processing in your work.
Here you will find information about data protection and personal data processing and an overview of the content on the other pages.


On 25 May 2018, the new “Dataskyddsförordningen” (DSF) came into force and thus replaced Sweden’s Personal Data Act (PUL). Dataskyddsförordningen is the Swedish translation of the EU’s General Data Protection Regulation (GDPR).

Read more about the GDPR on the Swedish Data Protection Authority’s website

What is the purpose of the GDPR?

The aim is to strengthen the right to a private life and adapt legislation to the digital society. Another aim is to harmonise EU legislation in the area and thereby facilitate the flow of information within the Union.

What are the implications for the University?

The new regulations clarify and place higher requirements on the University regarding the processing of personal data. The University processes large volumes of personal data every day and has an obligation to process data in a legally correct manner by:

  • informing the data subject about the personal data processing
  • providing information on the purpose and the relevant legal basis for processing as well as the data subject’s rights.
  • asking, in certain case, for the data subject’s consent for the processing of personal data.

Information and support

The information is divided up into two sections: general and area-specific information. To assist you, there are checklists for aspects on which you need to inform the data subject, FAQs and general tips.

General information

Area-specific information

Page Manager:


dataskyddsombud [at] lu [dot] se

GDPR glossary

  • Personal data controller – the organisation responsible for processing your personal data. In all but a few cases, Lund University is always the personal data controller.
  • Data subject – the person whose personal data you collect and/or process.
  • Data protection officer – the role and function responsible for Lund University’s compliance  with the GDPR.
  • The EU’s General Data Protection Regulation (GDPR) - The Swedish translation of GDPR is “Dataskyddsförordningen”.
  • Data Protection Act – the Swedish national complement to the EU’s GDPR.

Telephone: +46 (0)46-222 00 00 (switchboard)
Mailing adress: Box 117, 221 00 Lund, Sweden
Invoice adress: Box 188, 221 00 Lund, Sweden
Organisation number: 202100-3211

Site manager: staffpages [at] lu [dot] se

About this website