Search results

The primary purpose of the Credit Information Act is to protect data subjects' personal privacy but the law is also to contribute to efficient provision of credit information.

The primary purpose of the Credit Information Act is to protect data subjects' personal privacy but the law is also to contribute to efficient provision of credit information.

On this page you will find answers to the most frequently asked questions that IMY receives about payment default records.

The Swedish DPA has issued an administrative fine of 35 000 EUR against Mrkoll.se – a website that publishes personal data of all Swedes above the age of 16 – for infringement of the Credit Information Act and the GDPR. The website has carried out credit information activity in a way that is not in compliance with the law.

A licence from the Swedish Authority for Privacy Protection is normally required to operate credit reference activities. We decide on licences to operate credit reference activities only if the activities can be assumed to be carried on in a knowledgeable and judicious manner. Our evaluation is based on the type and scope of the planned activities.

Information security first and foremost involves preventing information from being leaked, distorted and destroyed. It also involves ensuring that information is to be available to the right people and at the right time. Information is not to be able to fall into the wrong hands and be misused. The data subjects are to know who is using their personal data and why.

When initiating a new research project, you need to know how personal data may be processed in the research. On this webpage, we’ve collected basic information on requirements and issues when processing personal data in research. Remember that the data controller is always responsible for how and why personal data is processed.

The Visa Information System (VIS) is a system for the exchange of visa data between the EU Member States.