Inform the people whose data you are using

The page was last modified:

When you collect data relating to a person you need to inform the person in question. In the data protection regulation there is a long list of what information you need to provide, but in short you need to inform the person that you are collecting personal data, what data it involves and why you are doing it.

If you will be sharing the data with others you must inform the person of this.
Remember that the information must be clear and comprehensive and preferably in writing.

This needs to be included in the information:

  • Who is responsible for managing the personal data. This is normally your company. It is not a person, except for when it is a sole proprietorship. The information should include contact information for the company.
  • Why the data is collected and how it will be used.
  • What the legal basis is (for example to fulfill a contract with the customer).
  • How long you are going to store the data (for example no more than one year after the customer relationship has ended).
  • If you have indicated consent as the legal basis (it might for example be in order to send marketing material to that person), you must also inform the person that they always have the right to withdraw their consent, which means that you must then stop sending marketing material to the person.
  • That the person whose data you are registering has the right to request an excerpt from the register in order to verify what data is registered on him/her.
  • That your company is obliged to correct information that is incorrect, incomplete or misguiding.

Read more about informing the people whose data you are collecting and using (The Swedish Data Inspection Agency) (in Swedish)

Read more about legal basis on the page When are you permitted to gather personal data?

Did you find this information helpful?

Please help us improve verksamt.se by telling us what you think about the page.

Mandatory field

Mandatory field

Processing of personal data

When you fill in the form, the personal data you include will be collected by the Swedish Companies Registration Office (Bolagsverket). Bolagsverket is responsible for this data. We store the data so that we can contact you. The data is not used for any other purpose.

More about personal data, your rights and how to complain

Responsible: Swedish Agency for Economic and Regional Growth

Back to top