Processing your personal data

Here you will find information about how we at the Swedish School of Sport and Health Sciences, GIH, process personal data.

As part of its activities, GIH is responsible for processing personal data. GIH processes personal data in accordance with the European parliament's General Data Protection Regulation, (EU) 2016/679 (GDPR).

What does GIH do with personal data?

GIH processes personal data so we can conduct our tasks as a government agency and higher education institution, i.e., provide research and education and collaborate with society. We also process personal data to review and develop our activities and comply with Swedish law.

All processing of personal data by GIH takes place to fulfil these purposes. There must also be legal reason and so only the personal data necessary for a specific purpose will be processed.

Students and staff can obtain more detailed information about how we process your personal data from your contact person, course coordinator, manager or head of research at GIH. If you believe you have not received this information from them, you can contact the GIH data protection group, see contact details at the bottom of the page.

What personal details does GIH collect?

There are several reasons why GIH may process your personal data. The most common reasons are that you are a student, researcher, participant in a study, an employee, if you will be attending a conference or other event, are applying for a position or for any other reason you might be in contact with GIH.

We obtain most of this information from you directly. The information we process depends on the reason why we are processing your personal data. In certain cases, we will collect information from other sources such as the Ladok student documentation system. We will provide information for each individual case.

Here are some examples of the personal data we process:

  • Contact information such as name, address, telephone number and email.
  • Swedish personal identity numbers are processed when we need to use them to establish your identity or coordinate your details between systems to ensure all of our information about you is accurate.
  • Information about credits awarded and other information about your studies at GIH.
  • Personal information obtained as part of participation in a research study.
  • Information about participation in conferences or courses.
  • Banking details and other financial information to pay out money or send invoices.
  • Personal data necessary upon employment or when you apply for a position.
  • Information about how you use our websites with the aim to improve the user experience, for example cookies.

Cookies are small text files that are saved on your computer when you visit our website. They are considered to be personal data. More information about how cookies are processed at GIH.

How is your personal data protected?

GIH ensures that processing personal details is protected by taking suitable technical and organisational measures. These measures are such that they guarantee a suitable level of security in relation to the risks associated with processing the data.

The security aspects include confidentiality, correctness and accessibility in addition to suitable technical protection. For example, these include, only an authorised person may have access to the information, encryption of data, storing data in a secure area and that copies of the processing are made.

Who can access my personal data?

A lot of the information at GIH is considered public record. If your personal information can be found in a public record, everyone who requests the document may obtain your personal information unless the Swedish Public Access to Information and Secrecy Act (2009:400) may prevent this.

In addition, your information may be shared with GIH collaboration partners in research projects; contractors or other parties who may require access to the data as part of an agreement between GIH and your person; if information is of public interest; as part of the activities as a public authority or legal obligation held by GIH.

Information of public interest includes information that GIH must provide as stated in the law or with support from the law, but is not a direct aspect of GIH's tasks as a public authority.

Should data be transferred to a third party, GIH will make all suitable legal, organisational and technical measures necessary to protect your personal data. If we plan on sharing information about you with other organisations, you will be informed.

GIH will not share personal data with other parties without legal grounds.

How long does GIH save personal data?

We will save your personal data for as long as it is necessary or for as long as the law requires.

  • If, for example, you are an employee we will process your personal data as long as necessary for administrative tasks related to your appointment.
  • If you are a student, we will process your personal data for as long as you are enrolled at GIH.
  • If you are participating in a study, we will process your personal data as long as is necessary to ensure research quality.

Data included in public records will be processed in accordance with the Swedish Freedom of the Press Act (1949:105), Archives Act (1990:782) and directions from the Swedish National Archives. In many cases, this means that your personal details may be stored for anything from five years or indefinitely in the GIH archive.

However, public records of temporary or little significance that contain personal data shall always be deleted (removed) once they are no longer relevant. This information will not be stored for longer than two years.

Right to correction and removal

Ongoing personal data processing must be objectively correct. GIH shall ensure that any personal data that is incorrect, incomplete or irrelevant will be corrected or deleted. If a person informs GIH that any registered information regarding the individual is incorrect, this information shall be corrected.

Data to third countries

GIH may share personal data with third countries outside of the EU/EEA, particularly in the case of international research projects. Should this be the case, GIH will take all reasonable legal, organisational and technical measures necessary to ensure suitable levels of security for your personal data. You will also be informed of this.

Read more

GIH personal data policy (in Swedish)

Read more about GDPR on the Swedish Data Protection Authority website

This information in Swedish

Contact information

GIH Data protection group and data protection representative
Email: gdpr@gih.se
Address: Lidingövägen 1, Box 5626, SE-114 86 Stockholm