Stockholm University treats personal information in accordance with Regulation (EU) 2016/679 of the European Parliament (GDPR) and supplementary national legislation on data privacy. These regulations are called ‘data protection regulations’ or ‘GDPR’ in the text below.

What does Stockholm University do with personal data?

The university uses personal data to accomplish our mission as a governmental agency and a university, i.e. to provide research, teaching and societal collaboration.

Personal data at the university is used only to accomplish this goal. There must also be a legal basis. Only the personal data required to meet this goal will be processed.

Who can use your personal information?

Much of the information at Stockholm is in the public record. If your personal information is in public documents, anyone who requests the documents can use your personal data so long as the public sector and confidentiality laws (Public Access to Information and Secrecy Act 2009:400) do not prevent this. The university will not hand over personal information to other parties without a lawful basis.

How long does Stockholm University keep my personal information?

We store your personal data only as long as it is needed to accomplish our goals, or as long as the relevant laws demand.

Rights according to data protection regulations

GDPR gives individuals a number of rights as concerns Stockholm University:

  • Right to information about how your personal personal data is stored and processed
  • Right to retrieve your academic transcripts – contact the university’s Head Registrar
  • Right to correct personal data
  • Right to have your personal data erased


If you have questions about data protection you can always contact the person responsible for the project or course. You can email the University data protection officer at