Information on the processing of personal data when using KTH's IT support

KTH, organization no. 202100-3054, 114 28 Stockholm, telephone number +46 8-790 60 00, is responsible as data controller for treatment of personal data about you, when you use KTH's IT support within the framework of KTH's operations.

For questions about the content of this article and KTH's processing of personal data, you are welcome to contact KTH's data protection representative through the following contact details: +46 8-790 60 00, dataskyddsombud@kth.se , Brinellvägen 8, 100 44 Stockholm, Sweden.

The purpose of KTH's treatment of your personal data is to facilitate communication and information exchange in the relationship between users and to otherwise offer good conditions for users to conduct research, studies, work and related activities. Your personal data may also be processed so that KTH can comply with applicable legislation, collective agreements and authority decisions.

The legal basis for KTH's treatment of your personal data is that it is necessary as part of the task of public interest that KTH, as a Swedish university, has to carry out, that is to be able to organize and conduct university education and research.

As a starting point, and as long as you and KTH do not agree otherwise, KTH will store your personal data during the time you are authorized to use KTH's IT support according to the current contingent liability. KTH may, however, store your personal data for a longer period than this to the extent that KTH is obliged to do so according to current legislation.

KTH is, for example, obliged to preserve public documents according to Swedish archive legislation, and personal data processed within the framework of KTH's IT support, may be included in public documents.

Who can access your personal data?

In addition to KTH, your personal data will also be processed by suppliers of the applications, systems and services included in KTH's IT support. The personal data will also be processed by these suppliers' respective subcontractors to the extent that they are involved in the provision of the respective application/system/service to KTH. Other suppliers of IT services to KTH may also gain access to the personal data. In these cases, KTH is responsible for ensuring that the suppliers who gain access to personal data only have access to this in a readable format if this is strictly necessary, and that they do not process the personal data for purposes other than providing the relevant application, system or service to KTH.

KTH may also disclose the personal data to other third parties to the extent that there is an obligation to do so according to Swedish law. This applies, for example, in the event that the personal data is part of a public document that must be disclosed (that is, to the extent that confidentiality does not apply to the personal data in question) and in the case of handing over such a document to another authority for preservation within the framework of KTH's obligation to preserve public documents according to Swedish archive legislation.

Provision of KTH's IT support means that your personal data may be transferred to countries outside the EEA/EU (so-called third countries) for which there is no decision by the European Commission on an adequate level of protection for personal data. In these cases, KTH has taken such suitable and suitable protective measures as are required according to current data protection legislation to protect the personal data.

How can you affect KTH's processing of your personal data?

In accordance with current data protection legislation, you have the right to access information about which personal data KTH processes about you and the right to request correction of it. Under certain conditions, you also have the right to request deletion or limitation of your personal data or to object to KTH's processing of personal data about you. You also have the right to file a complaint with the Data Protection Authority or another appropriate supervisory authority within the EU that supervises the processing of personal data.

You also have the right, under certain conditions, to obtain your personal data that you have provided to KTH in a structured, generally used and machine-readable format, and to transfer these to a personal data controller other than KTH (the right to so-called data portability).

If you want to exercise your rights according to the above, you can do this by contacting KTH by post or e-mail. General contact details for KTH and for KTH's data protection representative appear at the top of this article. The email address for computer rights issues is dataskydd@kth.se .