Newsletters that are sent internally only to University staff are considered part of the information they require to carry out their duties. This means you may collect contact details of internal recipients for internal newsletters without needing to ask for consent. You are also not required to provide special information to staff about doing this.
You must have a valid legal basis in order to process personal data. One of the legal bases is consent, which occurs in external engagement and communication. If you collect contact details from people outside Lund University with the intention of sending newsletters you must have a legal basis to do so, in this case consent. Remember that consent needs to be voluntary, informed and documented.
Read more about the legal basis and consent in the menu to the left:
What information do I need to provide?
Pursuant to Articles 13 and 14 of the GDPR, you have an obligation to inform the data subject about several points.
For questions about personal data and data protection, please contact:
Data Protection Officer, Legal Counsel
dataskyddsombud [at] lu [dot] se
+46 46 222 04 26